42 matches found
EUVD-2020-28447
Malware in sbrugna...
Azure Portal Elevation of Privilege Vulnerability
...
Silk Typhoon targeting IT supply chain
Executive summary: Microsoft Threat Intelligence identified a shift in tactics by Silk Typhoon, a Chinese espionage group, now targeting common IT solutions like remote management tools and cloud applications to gain initial access. While they haven't been observed directly targeting Microsoft...
U.S. Charges Two Sudanese Brothers for Record 35,000 DDoS Attacks
Federal prosecutors in the U.S. have charged two Sudanese brothers with running a distributed denial-of-service DDoS botnet for hire that conducted a record 35,000 DDoS attacks in a single year, including those that targeted Microsoft's services in June 2023. The attacks, which were facilitated b...
How to Configure Windows 2003 Network File Share as Authenticated Storage Repository for XenServer
This document describes how to configure Windows Server 2003 Release 2 Server Network File Share NFS as an authenticated storage repository for XenServer. The NFS component is only included in Windows Server 2003 Release 2. If you do not have this edition, you can achieve the same results by...
STORM-1359 DDoS triggered outage of Microsoft Services
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary The STORM-1359 group a.k.a Anonymous Sudan recently targeted Microsoft services with a DDoS attack, resulting in the disruption of multiple services. To receive real-time threat advisories, please follow...
Investigation Regarding Misconfigured Microsoft Storage Location
October 28, 2022 update: Added a Customer FAQ section. Summary Summary Security researchers at SOCRadar informed Microsoft on September 24, 2022, of a misconfigured Microsoft endpoint. This misconfiguration resulted in the potential for unauthenticated access to some business transaction data...
Researchers Warns of Large-Scale AiTM Attacks Targeting Enterprise Users
A new, large-scale phishing campaign has been observed using adversary-in-the-middle AitM techniques to get around security protections and compromise enterprise email accounts. "It uses an adversary-in-the-middle AitM attack technique capable of bypassing multi-factor authentication," Zscaler...
Apache Log4j Remote Code Execution Vulnerability
Certain versions of Apache Log4j2 are vulnerable to a remote code execution vulnerability. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled. Microsoft is not aware of any impact to th...
Join us at InfoSec Jupyterthon 2021
We’re excited to invite our community of infosec analysts and engineers to the second annual InfoSec Jupyterthon taking place on December 2-3, 2021. This is an online event organized by our friends in the Open Threat Research Forge, together with folks from the Microsoft Threat Intelligence Cente...
CVE-2020-7320
Protection Mechanism Failure vulnerability in McAfee Endpoint Security ENS for Windows prior to 10.7.0 September 2020 Update allows local administrator to temporarily reduce the detection capability allowing otherwise detected malware to run via stopping certain Microsoft services...
CVE-2020-7320
Protection Mechanism Failure vulnerability in McAfee Endpoint Security ENS for Windows prior to 10.7.0 September 2020 Update allows local administrator to temporarily reduce the detection capability allowing otherwise detected malware to run via stopping certain Microsoft services...
CVE-2020-7320 Protection Mechanism Failure in ENS for Windows
Protection Mechanism Failure vulnerability in McAfee Endpoint Security ENS for Windows prior to 10.7.0 September 2020 Update allows local administrator to temporarily reduce the detection capability allowing otherwise detected malware to run via stopping certain Microsoft services...
Targeted Phishing Attacks Successfully Hacked Top Executives At 150+ Companies
In the last few months, multiple groups of attackers successfully compromised corporate email accounts of at least 156 high-ranking officers at various firms based in Germany, the UK, Netherlands, Hong Kong, and Singapore. Dubbed 'PerSwaysion,' the newly spotted cyberattack campaign leveraged...
Microsoft Windows: LAPS: Password Settings: Password Length
This test checks the setting for policy OpenVAS Vulnerability Test $Id: winlapspasswdlength.nasl 11337 2018-09-11 14:23:53Z emoss $ Check value for Password Settings: Password Length Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program i...
Microsoft Services MS06-066 nwwks.dll
No description provided by source. $Id: ms06066nwwks.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Microsoft Services MS06-066 nwapi32.dll
No description provided by source. $Id: ms06066nwapi.rb 10150 2010-08-25 20:55:37Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of us...
Hotmail, MSN, Office 365, live.com sites down (now up)
Hotmail , MSN , Office 365 , live.com sites down now up A number of Microsoft online services, including Hotmail, MSN, Office 365, and seemingly most if not all of .live.com addresses are currently "experiencing an outage". MSN and Office 365 have already tweeted about it: The downtime, which...
CVE-2001-0505
Multiple memory leaks in Microsoft Services for Unix 2.0 allow remote attackers to cause a denial of service memory exhaustion via a large number of malformed requests to 1 the Telnet service, or 2 the NFS service...
CVE-2001-0505
The CVE-2001-0505 issue affects the Microsoft Services for UNIX (SFU) Telnet and NFS servers, where memory leaks can be triggered by a high volume of malformed requests, leading to denial of service via memory exhaustion. The affected components are the SFU Telnet server and SFU NFS server (on Wi...