Tag: threat actor

Source URL: https://www.microsoft.com/en-us/security/blog/2025/04/09/stopping-attacks-against-on-premises-exchange-server-and-sharepoint-server-with-amsi/ Source: Microsoft Security Blog Title: Stopping attacks against on-premises Exchange Server and SharePoint Server with AMSI Feedly Summary: Exchange Server and SharePoint Server are business-critical assets and considered crown-jewels for many organizations, making them attractive targets for attacks. To help customers protect their environments and respond to these attacks, Exchange Server and…

Cloud Blog: Driving secure innovation with AI and Google Unified Security

Apr 9, 2025

—

by

Source URL: https://cloud.google.com/blog/products/identity-security/driving-secure-innovation-with-ai-google-unified-security-next25/ Source: Cloud Blog Title: Driving secure innovation with AI and Google Unified Security Feedly Summary: Today at Google Cloud Next, we are announcing Google Unified Security, new security agents, and innovations across our security portfolio designed to deliver stronger security outcomes and enable every organization to make Google a part of their…

Microsoft Security Blog: Exploitation of CLFS zero-day leads to ransomware activity

Apr 8, 2025

—

by

Source URL: https://www.microsoft.com/en-us/security/blog/2025/04/08/exploitation-of-clfs-zero-day-leads-to-ransomware-activity/ Source: Microsoft Security Blog Title: Exploitation of CLFS zero-day leads to ransomware activity Feedly Summary: Microsoft Threat Intelligence Center (MSTIC) and Microsoft Security Response Center (MSRC) have discovered post-compromise exploitation of a newly discovered zero-day vulnerability in the Windows Common Log File System (CLFS) against a small number of targets. Microsoft released…

Cisco Talos Blog: Year in Review: Key vulnerabilities, tools, and shifts in attacker email tactics

Apr 8, 2025

—

by

Source URL: https://blog.talosintelligence.com/year-in-review-key-vulnerabilities-tools-and-shifts-in-attacker-email-tactics/ Source: Cisco Talos Blog Title: Year in Review: Key vulnerabilities, tools, and shifts in attacker email tactics Feedly Summary: From Talos’ 2024 Year in Review, here are some findings from the top targeted network device vulnerabilities. We also explore how threat actors are moving away from time sensitive lures in their emails.…

Google Online Security Blog: Google announces Sec-Gemini v1, a new experimental cybersecurity model

Apr 4, 2025

—

by

Source URL: http://security.googleblog.com/2025/04/google-launches-sec-gemini-v1-new.html Source: Google Online Security Blog Title: Google announces Sec-Gemini v1, a new experimental cybersecurity model Feedly Summary: AI Summary and Description: Yes Summary: The announcement introduces Sec-Gemini v1, an experimental AI model designed to enhance cybersecurity by addressing the asymmetrical nature of cyber threats. By leveraging advanced AI capabilities and integrating real-time…

Cisco Talos Blog: One mighty fine-looking report

—

by

Source URL: https://blog.talosintelligence.com/one-mighty-fine-looking-report/ Source: Cisco Talos Blog Title: One mighty fine-looking report Feedly Summary: Hazel highlights the key findings within Cisco Talos’ 2024 Year in Review (now available for download) and details our active tracking of an ongoing campaign targeting users in Ukraine with malicious LNK files. AI Summary and Description: Yes Summary: The Threat…

The Register: Suspected Chinese spies right now hijacking buggy Ivanti gear – for third time in 3 years

—

by

Source URL: https://www.theregister.com/2025/04/03/suspected_chines_snoops_hijacked_buggy/ Source: The Register Title: Suspected Chinese spies right now hijacking buggy Ivanti gear – for third time in 3 years Feedly Summary: Simple denial-of-service blunder turned out to be a remote unauth code exec disaster Suspected Chinese government spies have been exploiting a newly disclosed critical bug in Ivanti VPN appliances since…

Microsoft Security Blog: Threat actors leverage tax season to deploy tax-themed phishing campaigns

—

by

Source URL: https://www.microsoft.com/en-us/security/blog/2025/04/03/threat-actors-leverage-tax-season-to-deploy-tax-themed-phishing-campaigns/ Source: Microsoft Security Blog Title: Threat actors leverage tax season to deploy tax-themed phishing campaigns Feedly Summary: As Tax Day approaches in the United States on April 15, Microsoft has detected several tax-themed phishing campaigns employing various tactics. These campaigns use malicious hyperlinks and attachments to deliver credential phishing and malware including…

Cloud Blog: Suspected China-Nexus Threat Actor Actively Exploiting Critical Ivanti Connect Secure Vulnerability (CVE-2025-22457)

—

by