3 steps to secure your multicloud and hybrid infrastructure with Azure Arc

As businesses around the world grapple with the growth of an industrialized, organized attacker ecosystem, the need for customers to secure multicloud and hybrid infrastructure and workloads is increasingly urgent. Today, organizations face an attacker ecosystem that is highly economically...

The vulnerability of Microsoft Defender for Endpoint’s operating system, Microsoft Windows, allows attackers to perform spear-phishing attacks.

The vulnerability of Microsoft Defender for Endpoint’s Windows operating system is related to information representation errors in the user interface. Exploiting this vulnerability can allow attackers to perform spear-phishing attacks remotely...

Magic Hound Exploiting Old Microsoft Exchange ProxyShell Vulnerabilities

THREAT LEVEL: Red. For a detailed advisory, download the pdf file here APT35 aka Magic Hound, an Iranian-backed threat group, has begun using Microsoft Exchange ProxyShell vulnerabilities as an initial attack vector and to execute code through multiple web shells. The group has primarily targeted...

Implications of Windows Subsystem for Linux for Adversaries & Defenders (Part 1)

This post is the first of a multi-part blog series that will explore and highlight the different risks that Windows Subsystem for Linux WSL poses to an enterprise IT environment. Here we examine a new Microsoft feature for GNU\Linux that increases the attack surface and introduces a lot more...

The vulnerability of the threat detection mechanism of Microsoft Defender for IoT, which stems from the lack of proper validation of the user-inputted string, allows attackers to escalate their privileges or execute arbitrary code.

The vulnerability of the Microsoft Defender for IoT’s threat detection mechanism is related to the lack of proper validation of the string entered by the user before it is used to execute system commands. Exploiting this vulnerability can allow attackers to enhance their privileges or execute...

Uncovering Trickbot’s use of IoT devices in command-and-control infrastructure

Trickbot, a sophisticated trojan that has evolved significantly since its discovery in 2016, has continually expanded its capabilities and, even with disruption efforts and news of its infrastructure going offline, it has managed to remain one of the most persistent threats in recent years. The...

Microsoft Patch Tuesday March 2022

Hello everyone! I am glad to greet you from the most sanctioned country in the world. Despite all the difficulties, we carry on. I even have some time to release new episodes. This time it will be about Microsoft Patch Tuesday for March 2022. Alternative video link for Russia: I do the analysis a...

Secure your healthcare devices with Microsoft Defender for IoT and HCL’s CARE

It wasn’t long ago that medical devices were isolated and unconnected, but the rise of IoT has brought real computing power to the network edge. Today, medical devices are transforming into interconnected, smart assistants with decision-making capabilities. Any device in a medical setting must be...

Secure your healthcare devices with Microsoft Defender for IoT and HCL’s CARE

It wasn’t long ago that medical devices were isolated and unconnected, but the rise of IoT has brought real computing power to the network edge. Today, medical devices are transforming into interconnected, smart assistants with decision-making capabilities. Any device in a medical setting must be...

CVE-2022-23278

Microsoft Defender for Endpoint Spoofing Vulnerability...

CVE-2022-23266

Microsoft Defender for IoT Elevation of Privilege Vulnerability...

CVE-2022-23266

Microsoft Defender for IoT Elevation of Privilege Vulnerability...

CVE-2022-23278

Microsoft Defender for Endpoint Spoofing Vulnerability...

CVE-2022-23278

Microsoft Defender for Endpoint Spoofing Vulnerability...

CVE-2022-23266

Microsoft Defender for IoT Elevation of Privilege Vulnerability...

CVE-2022-23265

Microsoft Defender for IoT Remote Code Execution Vulnerability...

CVE-2022-23265

Microsoft Defender for IoT Remote Code Execution Vulnerability...

CVE-2022-23265

Microsoft Defender for IoT Remote Code Execution Vulnerability...

Remote code execution

Microsoft Defender for IoT Remote Code Execution Vulnerability...

Spoofing

Microsoft Defender for Endpoint Spoofing Vulnerability...