In October, VMware fixed a critical remote code execution vulnerability in its vCenter Server (CVE-2023-34048) and Cloud Foundation enterprise products that are used to…
Tag:
cyberspies
-
-
HackingNewsSecurity
Iranian cyberspies target thousands of organizations with password spray attacks
For a subset of compromised accounts, the attackers used AzureHound and ROADtools, two open-source frameworks that can be used to conduct reconnaissance in Microsoft…
-
Cloud SecurityNewsSecurity
Russian cyberspies defeat Microsoft number-matching 2FA policy with fake Teams messages
A Russian state-run cyberespionage group known as APT29 has been launching phishing attacks against organizations that use fake security messages over Microsoft Teams in…
-
A cyberespionage group believed to be associated with the Iranian government has been infecting Microsoft Exchange Servers with a new malware implant dubbed BellaCiao…
-
Cloud SecurityNewsSecurity
Russian cyberspies target cloud services providers and resellers to abuse delegated access
The group of hackers responsible for the SolarWinds software supply chain attack have continued to seek out ways of indirectly gaining access to enterprise…