SEARCH
Archive
Microsoft and Partners Move to Disrupt Use of Cracked Cobalt Strike Copies
Microsoft, Fortra, and the Health-ISAC have obtained a court order to disrupt the use of cracked copies of Cobalt Strike, which are often used in ransomware intrusions.
Microsoft Patches Two Bugs Under Active Attack
In its March Patch Tuesday release, Microsoft has fixed two vulnerabilities (CVE-2023-23397) and (CVE-2023-24880) that have been exploited in the wild.
Microsoft Patches Three Actively Exploited Bugs
In its February patch release, Microsoft fixed three vulnerabilities in Windows that have been actively exploited.
Play Ransomware Group Using New ProxyNotShell Exploit
Play ransomware actors have been using a previously undocumented exploitation method for the ProxyNotShell Exchange flaws.
Microsoft-Signed Malicious Driver Used in Pre-Ransomware Intrusions
Researchers have found a malicious driver signed by Microsoft used in the lead up to Hive and Cuba ransomware deployments.