Russia's Putin authorised pro-Trump 'influence' campaign, US intelligence says

Russia's Putin authorised pro-Trump 'influence' campaign, US intelligence says

Russian President Vladimir Putin likely authorised attempts to influence last year’s US election in favour of former President Donald Trump, intelligence officials say. Russia has repeatedly denied allegations of election interference. The 15-page report, released on Tuesday by the Office of the….

Cyberespionage Campaign Targeting Telecommunication Companies – Kashif Ali

Cyberespionage Campaign Targeting Telecommunication Companies – Kashif Ali

In this report the McAfee Advanced Threat Research (ATR) Strategic Intelligence team details an espionage campaign, targeting telecommunication companies, dubbed Operation Diànxùn. In this attack, we discovered malware using similar tactics, techniques and procedures (TTPs) to those observed in earlier campaigns publicly attributed to the threat actors RedDelta and Mustang Panda. While the initial vector…

Microsoft Issues Mitigation Tool for an Exchange Server Flaw

Microsoft Issues Mitigation Tool for an Exchange Server Flaw

Fraud Management & Cybercrime , Fraud Risk Management , Governance & Risk Management One-Click Mitigation Tool Provides Quick Fix for ProxyLogon Exchange Flaw Akshaya Asokan (asokan_akshaya) • March 16, 2021     Microsoft has released an interim mitigation tool designed to help smaller organizations take quick action to prevent attacks that exploit the unpatched ProxyLogon…

‘Europe’s cascade of bad decisions over AstraZeneca jab’

‘Europe’s cascade of bad decisions over AstraZeneca jab’

European countries pausing use of the Oxford-AstraZeneca Covid-19 jab were risking the lives of their citizens and “throwing caution to the wind”, Dr Anthony Cox, who researches drug safety at the University of Birmingham has said. He told BBC World News: “What we seem to have had is like a cascade of bad decision making…

Use This One-Click Mitigation Tool from Microsoft to Prevent Exchange Attacks

Use This One-Click Mitigation Tool from Microsoft to Prevent Exchange Attacks

Use This One-Click Mitigation Tool from Microsoft to Prevent Exchange Attacks | IT Security News 16. March 2021 Microsoft on Monday released a one-click mitigation software that applies all the necessary countermeasures to secure vulnerable environments against the ongoing widespread ProxyLogon Exchange Server cyberattacks.Called Exchange On-premises Mitigation Tool (EOMT), the PowerShell-based script serves to mitigate against current…

DearCry Ransomware Targeting Exchange Bug

DearCry Ransomware Targeting Exchange Bug

Fraud Management & Cybercrime , Fraud Risk Management , Governance & Risk Management ‘Unsophisticated’ Code Has Scant Resemblance to WannaCry Namesake, Researchers Say Mathew J. Schwartz (euroinfosec) • March 16, 2021     DearCry ransomware appends “.CRYPT” to forcibly encrypted files. (Source: Sophos) Fresh ransomware targeting as-yet-unpatched on-premises Exchange servers appears to have been rushed…

DearCry Ransomware Unleashed In Microsoft Exchange Hack

DearCry Ransomware Unleashed In Microsoft Exchange Hack

Adversaries are deploying DearCry ransomware on victim systems after hacking into on-premise Microsoft Exchange servers that remain unpatched, Microsoft acknowledged late Thursday. “Microsoft observed a new family of human operated ransomware attack customers,” Microsoft Security Program Manager Phillip Misner tweeted at 9:19 p.m. ET Thursday. “Human operated ransomware attacks are utilizing the Microsoft Exchange vulnerabilities…

Lookout Enters SASE Market Through Acquisition of CipherCloud

Lookout Enters SASE Market Through Acquisition of CipherCloud

Cybersecurity company Lookout, Inc. has announced the acquisition of CipherCloud as it seeks to develop an integrated endpoint-to-cloud security solution. The deal will enable Lookout to secure CipherCloud solutions as part of its product portfolio. This includes solutions that span developing SASE categories, including Cloud Access Security Broker (CASB), Zero-Trust Network Access (ZTNA), Secure Web…