LAPSUS$ Hackers Claim to Have Breached Microsoft and Authentication Firm Okta

LAPSUS$ Hackers Claim to Have Breached Microsoft and Authentication Firm Okta,

Microsoft and authentication services provider Okta said they are investigating claims of a potential breach alleged by the LAPSUS$ extortionist gang.
The development, which was first reported by Vice and Reuters, comes after the cyber criminal group posted screenshots and source code of what it said were the companies’ internal projects and systems on its Telegram channel.
The leaked 37GB

,

Microsoft and authentication services provider Okta said they are investigating claims of a potential breach alleged by the LAPSUS$ extortionist gang.
The development, which was first reported by Vice and Reuters, comes after the cyber criminal group posted screenshots and source code of what it said were the companies’ internal projects and systems on its Telegram channel.
The leaked 37GB

, ,
https://thehackernews.com/2022/03/lapsus-hackers-claim-to-have-breached.html

Wazuh Offers XDR Functionality at a Price Enterprises Will Love — Free!

Wazuh Offers XDR Functionality at a Price Enterprises Will Love — Free!,

Back in 2018, Palo Alto Networks CTO and co-founder Nir Zuk coined a new term to describe the way that businesses needed to approach cybersecurity in the years to come. That term, of course, was extended detection and response (XDR). It described a unified cybersecurity infrastructure that brought endpoint threat detection, network analysis and visibility (NAV), access management, and more under

,

Back in 2018, Palo Alto Networks CTO and co-founder Nir Zuk coined a new term to describe the way that businesses needed to approach cybersecurity in the years to come. That term, of course, was extended detection and response (XDR). It described a unified cybersecurity infrastructure that brought endpoint threat detection, network analysis and visibility (NAV), access management, and more under

, ,
https://thehackernews.com/2022/03/wazuh-offers-xdr-functionality-at-price.html

U.S. Government Warns Companies of Potential Russian Cyber Attacks

U.S. Government Warns Companies of Potential Russian Cyber Attacks,

The U.S. government on Monday once again cautioned of potential cyber attacks from Russia in retaliation for economic sanctions imposed by the west on the country following its military assault on Ukraine last month.
« It’s part of Russia’s playbook, » U.S. President Joe Biden said in a statement, citing « evolving intelligence that the Russian Government is exploring options. »
The development

,

The U.S. government on Monday once again cautioned of potential cyber attacks from Russia in retaliation for economic sanctions imposed by the west on the country following its military assault on Ukraine last month.
« It’s part of Russia’s playbook, » U.S. President Joe Biden said in a statement, citing « evolving intelligence that the Russian Government is exploring options. »
The development

, ,
https://thehackernews.com/2022/03/us-government-warns-companies-of.html

Seriez-vous capable de détecter cette fausse fenêtre de connexion qui veut voler vos données ?

Seriez-vous capable de détecter cette fausse fenêtre de connexion qui veut voler vos données ?,

Un chercheur en sécurité montre qu’il est possible d’imiter à la perfection des fenêtres de connexion aux services en ligne. Et en plus, les techniques utilisées sont plutôt simples.

,

Un chercheur en sécurité montre qu’il est possible d’imiter à la perfection des fenêtres de connexion aux services en ligne. Et en plus, les techniques utilisées sont plutôt simples.

, ,
https://www.01net.com/actualites/seriez-vous-capable-de-detecter-cette-fausse-fenetre-de-connexion-qui-veut-voler-vos-donnees-2055589.html

New Dell BIOS Bugs Affect Millions of Inspiron, Vostro, XPS, Alienware Systems

New Dell BIOS Bugs Affect Millions of Inspiron, Vostro, XPS, Alienware Systems,

Five new security weaknesses have been disclosed in Dell BIOS that, if successfully exploited, could lead to code execution on vulnerable systems, joining the likes of firmware vulnerabilities recently uncovered in Insyde Software’s InsydeH2O and HP Unified Extensible Firmware Interface (UEFI).
Tracked as CVE-2022-24415, CVE-2022-24416, CVE-2022-24419, CVE-2022-24420, and CVE-2022-24421, the

,

Five new security weaknesses have been disclosed in Dell BIOS that, if successfully exploited, could lead to code execution on vulnerable systems, joining the likes of firmware vulnerabilities recently uncovered in Insyde Software’s InsydeH2O and HP Unified Extensible Firmware Interface (UEFI).
Tracked as CVE-2022-24415, CVE-2022-24416, CVE-2022-24419, CVE-2022-24420, and CVE-2022-24421, the

, ,
https://thehackernews.com/2022/03/new-dell-bios-bugs-affect-millions-of.html

New Browser-in-the Browser (BITB) Attack Makes Phishing Nearly Undetectable

New Browser-in-the Browser (BITB) Attack Makes Phishing Nearly Undetectable,

A novel phishing technique called browser-in-the-browser (BitB) attack can be exploited to simulate a browser window within the browser in order to spoof a legitimate domain, thereby making it possible to stage convincing phishing attacks.
According to penetration tester and security researcher, who goes by the handle mrd0x_, the method takes advantage of third-party single sign-on (SSO) options

,

A novel phishing technique called browser-in-the-browser (BitB) attack can be exploited to simulate a browser window within the browser in order to spoof a legitimate domain, thereby making it possible to stage convincing phishing attacks.
According to penetration tester and security researcher, who goes by the handle mrd0x_, the method takes advantage of third-party single sign-on (SSO) options

, ,
https://thehackernews.com/2022/03/new-browser-in-browser-bitb-attack.html

Ukraine : il a transformé son logiciel open source en wiper pour punir les Russes

Ukraine : il a transformé son logiciel open source en wiper pour punir les Russes,

Un développeur a intégré une fonction malveillante dans un module JavaScript qui ne se déclenche que sur des ordinateurs russes ou biélorusses. Une idée dangereuse qui provoque d’importants dégâts collatéraux.

,

Un développeur a intégré une fonction malveillante dans un module JavaScript qui ne se déclenche que sur des ordinateurs russes ou biélorusses. Une idée dangereuse qui provoque d’importants dégâts collatéraux.

, ,
https://www.01net.com/actualites/ukraine-il-a-transforme-son-logiciel-open-source-en-wiper-pour-punir-les-russes-2055581.html

New Backdoor Targets French Entities via Open-Source Package Installer

New Backdoor Targets French Entities via Open-Source Package Installer,

Researchers have exposed a new targeted email campaign aimed at French entities in the construction, real estate, and government sectors that leverages the Chocolatey Windows package manager to deliver a backdoor called Serpent on compromised systems.
Enterprise security firm Proofpoint attributed the attacks to a likely advanced threat actor based on the tactics and the victimology patterns

,

Researchers have exposed a new targeted email campaign aimed at French entities in the construction, real estate, and government sectors that leverages the Chocolatey Windows package manager to deliver a backdoor called Serpent on compromised systems.
Enterprise security firm Proofpoint attributed the attacks to a likely advanced threat actor based on the tactics and the victimology patterns

, ,
https://thehackernews.com/2022/03/new-backdoor-targets-french-entities.html

‘CryptoRom’ Crypto Scam Abusing iPhone Features to Target Mobile Users

‘CryptoRom’ Crypto Scam Abusing iPhone Features to Target Mobile Users

,

Social engineering attacks leveraging a combination of romantic lures and cryptocurrency fraud have been luring unsuspecting victims into installing fake apps by taking advantage of legitimate iOS features like TestFlight and Web Clips.
Cybersecurity company Sophos, which has named the organized crime campaign « CryptoRom, » characterized it as a wide-ranging global scam.
« This style of

,

Social engineering attacks leveraging a combination of romantic lures and cryptocurrency fraud have been luring unsuspecting victims into installing fake apps by taking advantage of legitimate iOS features like TestFlight and Web Clips.
Cybersecurity company Sophos, which has named the organized crime campaign « CryptoRom, » characterized it as a wide-ranging global scam.
« This style of

, ,
https://thehackernews.com/2022/03/cryptorom-crypto-scam-abusing-iphone.html

South Korean DarkHotel Hackers Targeted Luxury Hotels in Macau

South Korean DarkHotel Hackers Targeted Luxury Hotels in Macau,

Luxury hotels in the Chinese special administrative region of Macau were the target of a malicious spear-phishing campaign from the second half of November 2021 and through mid-January 2022.
Cybersecurity firm Trellix attributed the campaign with moderate confidence to a suspected South Korean advanced persistent threat (APT) tracked as DarkHotel, building on research previously published by 

,

Luxury hotels in the Chinese special administrative region of Macau were the target of a malicious spear-phishing campaign from the second half of November 2021 and through mid-January 2022.
Cybersecurity firm Trellix attributed the campaign with moderate confidence to a suspected South Korean advanced persistent threat (APT) tracked as DarkHotel, building on research previously published by 

, ,
https://thehackernews.com/2022/03/south-korean-darkhotel-hackers-targeted.html