Microsoft and Okta Confirm Breach by LAPSUS$ Extortion Group

Microsoft and Okta Confirm Breach by LAPSUS$ Extortion Group,

Microsoft on Tuesday confirmed that the LAPSUS$ extortion-focused hacking crew had gained « limited access » to its systems, as authentication services provider Okta revealed that nearly 2.5% of its customers have been potentially impacted in the wake of the breach.
« No customer code or data was involved in the observed activities, » Microsoft’s Threat Intelligence Center (MSTIC) said, adding that

,

Microsoft on Tuesday confirmed that the LAPSUS$ extortion-focused hacking crew had gained « limited access » to its systems, as authentication services provider Okta revealed that nearly 2.5% of its customers have been potentially impacted in the wake of the breach.
« No customer code or data was involved in the observed activities, » Microsoft’s Threat Intelligence Center (MSTIC) said, adding that

, ,
https://thehackernews.com/2022/03/microsoft-and-okta-confirm-breach-by.html

Lapsus$ frappe Microsoft, LG et Okta, laissant planer la menace de nombreux autres vols de données

Lapsus$ frappe Microsoft, LG et Okta, laissant planer la menace de nombreux autres vols de données,

Le piratage d’Okta pourrait avoir des répercussions sur de multiples grands comptes, clients de ce fournisseur de services d’accès et d’authentification.

,

Le piratage d’Okta pourrait avoir des répercussions sur de multiples grands comptes, clients de ce fournisseur de services d’accès et d’authentification.

, ,
https://www.01net.com/actualites/lapsusdollar-frappe-microsoft-lg-et-okta-laissant-planer-la-menace-de-nombreux-autres-vols-de-donnees-2055607.html

LAPSUS$ Hackers Claim to Have Breached Microsoft and Authentication Firm Okta

LAPSUS$ Hackers Claim to Have Breached Microsoft and Authentication Firm Okta,

Microsoft and authentication services provider Okta said they are investigating claims of a potential breach alleged by the LAPSUS$ extortionist gang.
The development, which was first reported by Vice and Reuters, comes after the cyber criminal group posted screenshots and source code of what it said were the companies’ internal projects and systems on its Telegram channel.
The leaked 37GB

,

Microsoft and authentication services provider Okta said they are investigating claims of a potential breach alleged by the LAPSUS$ extortionist gang.
The development, which was first reported by Vice and Reuters, comes after the cyber criminal group posted screenshots and source code of what it said were the companies’ internal projects and systems on its Telegram channel.
The leaked 37GB

, ,
https://thehackernews.com/2022/03/lapsus-hackers-claim-to-have-breached.html

Wazuh Offers XDR Functionality at a Price Enterprises Will Love — Free!

Wazuh Offers XDR Functionality at a Price Enterprises Will Love — Free!,

Back in 2018, Palo Alto Networks CTO and co-founder Nir Zuk coined a new term to describe the way that businesses needed to approach cybersecurity in the years to come. That term, of course, was extended detection and response (XDR). It described a unified cybersecurity infrastructure that brought endpoint threat detection, network analysis and visibility (NAV), access management, and more under

,

Back in 2018, Palo Alto Networks CTO and co-founder Nir Zuk coined a new term to describe the way that businesses needed to approach cybersecurity in the years to come. That term, of course, was extended detection and response (XDR). It described a unified cybersecurity infrastructure that brought endpoint threat detection, network analysis and visibility (NAV), access management, and more under

, ,
https://thehackernews.com/2022/03/wazuh-offers-xdr-functionality-at-price.html

U.S. Government Warns Companies of Potential Russian Cyber Attacks

U.S. Government Warns Companies of Potential Russian Cyber Attacks,

The U.S. government on Monday once again cautioned of potential cyber attacks from Russia in retaliation for economic sanctions imposed by the west on the country following its military assault on Ukraine last month.
« It’s part of Russia’s playbook, » U.S. President Joe Biden said in a statement, citing « evolving intelligence that the Russian Government is exploring options. »
The development

,

The U.S. government on Monday once again cautioned of potential cyber attacks from Russia in retaliation for economic sanctions imposed by the west on the country following its military assault on Ukraine last month.
« It’s part of Russia’s playbook, » U.S. President Joe Biden said in a statement, citing « evolving intelligence that the Russian Government is exploring options. »
The development

, ,
https://thehackernews.com/2022/03/us-government-warns-companies-of.html

Seriez-vous capable de détecter cette fausse fenêtre de connexion qui veut voler vos données ?

Seriez-vous capable de détecter cette fausse fenêtre de connexion qui veut voler vos données ?,

Un chercheur en sécurité montre qu’il est possible d’imiter à la perfection des fenêtres de connexion aux services en ligne. Et en plus, les techniques utilisées sont plutôt simples.

,

Un chercheur en sécurité montre qu’il est possible d’imiter à la perfection des fenêtres de connexion aux services en ligne. Et en plus, les techniques utilisées sont plutôt simples.

, ,
https://www.01net.com/actualites/seriez-vous-capable-de-detecter-cette-fausse-fenetre-de-connexion-qui-veut-voler-vos-donnees-2055589.html

New Dell BIOS Bugs Affect Millions of Inspiron, Vostro, XPS, Alienware Systems

New Dell BIOS Bugs Affect Millions of Inspiron, Vostro, XPS, Alienware Systems,

Five new security weaknesses have been disclosed in Dell BIOS that, if successfully exploited, could lead to code execution on vulnerable systems, joining the likes of firmware vulnerabilities recently uncovered in Insyde Software’s InsydeH2O and HP Unified Extensible Firmware Interface (UEFI).
Tracked as CVE-2022-24415, CVE-2022-24416, CVE-2022-24419, CVE-2022-24420, and CVE-2022-24421, the

,

Five new security weaknesses have been disclosed in Dell BIOS that, if successfully exploited, could lead to code execution on vulnerable systems, joining the likes of firmware vulnerabilities recently uncovered in Insyde Software’s InsydeH2O and HP Unified Extensible Firmware Interface (UEFI).
Tracked as CVE-2022-24415, CVE-2022-24416, CVE-2022-24419, CVE-2022-24420, and CVE-2022-24421, the

, ,
https://thehackernews.com/2022/03/new-dell-bios-bugs-affect-millions-of.html

New Browser-in-the Browser (BITB) Attack Makes Phishing Nearly Undetectable

New Browser-in-the Browser (BITB) Attack Makes Phishing Nearly Undetectable,

A novel phishing technique called browser-in-the-browser (BitB) attack can be exploited to simulate a browser window within the browser in order to spoof a legitimate domain, thereby making it possible to stage convincing phishing attacks.
According to penetration tester and security researcher, who goes by the handle mrd0x_, the method takes advantage of third-party single sign-on (SSO) options

,

A novel phishing technique called browser-in-the-browser (BitB) attack can be exploited to simulate a browser window within the browser in order to spoof a legitimate domain, thereby making it possible to stage convincing phishing attacks.
According to penetration tester and security researcher, who goes by the handle mrd0x_, the method takes advantage of third-party single sign-on (SSO) options

, ,
https://thehackernews.com/2022/03/new-browser-in-browser-bitb-attack.html

Ukraine : il a transformé son logiciel open source en wiper pour punir les Russes

Ukraine : il a transformé son logiciel open source en wiper pour punir les Russes,

Un développeur a intégré une fonction malveillante dans un module JavaScript qui ne se déclenche que sur des ordinateurs russes ou biélorusses. Une idée dangereuse qui provoque d’importants dégâts collatéraux.

,

Un développeur a intégré une fonction malveillante dans un module JavaScript qui ne se déclenche que sur des ordinateurs russes ou biélorusses. Une idée dangereuse qui provoque d’importants dégâts collatéraux.

, ,
https://www.01net.com/actualites/ukraine-il-a-transforme-son-logiciel-open-source-en-wiper-pour-punir-les-russes-2055581.html

New Backdoor Targets French Entities via Open-Source Package Installer

New Backdoor Targets French Entities via Open-Source Package Installer,

Researchers have exposed a new targeted email campaign aimed at French entities in the construction, real estate, and government sectors that leverages the Chocolatey Windows package manager to deliver a backdoor called Serpent on compromised systems.
Enterprise security firm Proofpoint attributed the attacks to a likely advanced threat actor based on the tactics and the victimology patterns

,

Researchers have exposed a new targeted email campaign aimed at French entities in the construction, real estate, and government sectors that leverages the Chocolatey Windows package manager to deliver a backdoor called Serpent on compromised systems.
Enterprise security firm Proofpoint attributed the attacks to a likely advanced threat actor based on the tactics and the victimology patterns

, ,
https://thehackernews.com/2022/03/new-backdoor-targets-french-entities.html