The Hacker News10 小时
⚡ THN Weekly Recap: Google Secrets Stolen, Windows Hack, New Crypto Scams and More
It's time for a new security approach. Replace traditional security technology that exposes your attack surface and allows ...
The Hacker News2 天
Microsoft: Russian-Linked Hackers Using 'Device Code Phishing' to Hijack Accounts
The tech giant said the attack involves sending phishing emails that masquerade as Microsoft Teams meeting invitations that, ...
Infosecurity-magazine.com3 天
Russian Hackers Target Microsoft 365 Accounts with Device Code Phishing
Volexity highlighted how Russian nation-state actors are stealing Microsoft device authentication codes to compromise ...
What is device code phishing, and why are Russian spies so successful at it?
Researchers have uncovered a sustained and ongoing campaign by Russian spies that uses a clever phishing technique to hijack ...
来自MSN2 个月
Russian hackers are attacking innocent companies to get access to their neighbors
First identified by cybersecurity firm Volexity in February 2022, the attack raises new concerns about vulnerabilities in corporate Wi-Fi system. In this case, APT28, tracked by Volexity as ...
CRN1 年
Mandiant: Attacks Exploiting Ivanti VPN Flaws Began In December
Researchers at the Google Cloud-owned cybersecurity specialist confirmed findings from Volexity researchers about exploitation of the Connect Secure VPN vulnerabilities. Mandiant researchers ...
CRN1 年
Ivanti VPN Vulnerabilities Seeing ‘Mass Exploitation:’ Researchers
Volexity researchers who first discovered flaws affecting widely used Ivanti VPN devices now say the vulnerabilities are seeing widespread exploitation by multiple threat actors. In its own update ...
Computing1 年
Ivanti VPN under widespread attack
In a blog post, Volexity says that two zero-day vulnerabilities (CVE-2023-46805 and CVE-2024-21887) are being actively exploited to compromise ICS VPN appliances. "Exploitation of these ...