credential hygiene – Experimental News Clipping Site

Microsoft Security Blog: Silk Typhoon targeting IT supply chain

Mar 5, 2025

—

by

Source URL: https://www.microsoft.com/en-us/security/blog/2025/03/05/silk-typhoon-targeting-it-supply-chain/ Source: Microsoft Security Blog Title: Silk Typhoon targeting IT supply chain Feedly Summary: Silk Typhoon is a Chinese state actor focused on espionage campaigns targeting a wide range of industries in the US and throughout the world. In recent months, Silk Typhoon has shifted to performing IT supply chain attacks to gain…

Microsoft Security Blog: Storm-2372 conducts device code phishing campaign

Feb 14, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.microsoft.com/en-us/security/blog/2025/02/13/storm-2372-conducts-device-code-phishing-campaign/ Source: Microsoft Security Blog Title: Storm-2372 conducts device code phishing campaign Feedly Summary: Microsoft Threat Intelligence Center discovered an active and successful device code phishing campaign by a threat actor we track as Storm-2372. Our ongoing investigation indicates that this campaign has been active since August 2024 with the actor creating lures…

The Register: Enzo Biochem settles lawsuit over 2023 ransomware attack for $7.5M

Jan 16, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/01/16/enzo_biochem_ransomware_lawsuit/ Source: The Register Title: Enzo Biochem settles lawsuit over 2023 ransomware attack for $7.5M Feedly Summary: That’s in addition to the $4.5M fine paid to three state AGs last year Enzo Biochem has settled a consolidated class-action lawsuit relating to its 2023 ransomware incident for $7.5 million.… AI Summary and Description: Yes…

Microsoft Security Blog: Chinese threat actor Storm-0940 uses credentials from password spray attacks from a covert network

Nov 1, 2024

—

by

system automation

in Uncategorized

Source URL: https://www.microsoft.com/en-us/security/blog/2024/10/31/chinese-threat-actor-storm-0940-uses-credentials-from-password-spray-attacks-from-a-covert-network/ Source: Microsoft Security Blog Title: Chinese threat actor Storm-0940 uses credentials from password spray attacks from a covert network Feedly Summary: Since August 2023, Microsoft has observed intrusion activity targeting and successfully stealing credentials from multiple Microsoft customers that is enabled by highly evasive password spray attacks. Microsoft has linked the source…

Tag: credential hygiene

Microsoft Security Blog: Silk Typhoon targeting IT supply chain

Microsoft Security Blog: Storm-2372 conducts device code phishing campaign

The Register: Enzo Biochem settles lawsuit over 2023 ransomware attack for $7.5M

Microsoft Security Blog: Chinese threat actor Storm-0940 uses credentials from password spray attacks from a covert network