Hot Topics

Recorded Future

Microsoft Alert: COLDRIVER Credential Theft Rising Again

| | Blue Callisto, BlueCharlie, Calisto, COLDRIVER, credential theft, Cyber threat landscape, Cybersecurity, Cybersecurity News, Email Marketing Services, Evasion Techniques, Five Eyes Intelligence Alliance, Gossamer Bear, International Response, Lookalike Domains, Malware, Microsoft Security Alert, Recorded Future, sanctions, Seaborgium, spear-phishing, Star Blizzard, TA446, TAG-53
In a recent Microsoft security alert, the notorious threat actor known as COLDRIVER has escalated its credential theft activities, targeting entities strategically significant to Russia. Simultaneously, it has refined its capabilities to ...
TuxCare
A spreadsheet list of integration commands you can use to build a phishing playbook using Office 365, CrowdStrike, Active Directory, Checkpoint, and Recorded Future

How to Build a Phishing Playbook Part 1: Preparation

| | Active Directory, Checkpoint Firewall, CrowdStrike, Cybersecurity, Incident Response, Office 365 Integration, OSINT, Phishing Attacks, Recorded Future, SOAR, SOAR platform
Automating response to phishing attacks remains one of the core use-cases of SOAR platforms. In 2022, the Anti-Phishing Working Group (APWG) logged ~4.7 million phishing attacks. Since 2019, the number of phishing ...
D3 Security
Microsoft Patch Tuesday, February 2022 Edition

Microsoft Patch Tuesday, February 2022 Edition

| | Allan Liska, Andrew Cunningham, Ars Technica, CVE-2022-21989, CVE-2022-21996, CVE-2022-22005, Greg Wiseman, Immersive Labs, Kevin Breen, Print Spooler, rapid7, Recorded Future, Time to Patch, Win32k
Microsoft today released software updates to plug security holes in its Windows operating systems and related software. This month's relatively light patch batch is refreshingly bereft of any zero-day threats, or even ...
Krebs on Security
Who Wrote the ALPHV/BlackCat Ransomware Strain?

Who Wrote the ALPHV/BlackCat Ransomware Strain?

| | @CookieDays, A Little Sunshine, ALPHV ransomware, Binrs, BlackCat ransomware, BlackMatter, Breadcrumbs, Catalin Cimpanu, Darkside, DuckerMan, duckermanit, Flashpoint, Jason Hill, Ne'er-Do-Well News, Paul Roberts, RAMP, Recorded Future, ReversingLabs, rEvil, Sergey Duck, Sergey Kryakov, Sergey Penchikov, smiseo, The Record, ToX, Varonis, YBCat
In December 2021, researchers discovered a new ransomware-as-a-service named ALPHV (a.k.a. "BlackCat"), considered to be the first professional cybercrime group to create and use a ransomware strain in the Rust programming language ...
Krebs on Security
Microsoft Patch Tuesday, November 2021 Edition

Microsoft Patch Tuesday, November 2021 Edition

| | Allan Liska, CVE-2021-41371, CVE-2021-42292, CVE-2021-42321, CVE-20213-38631, Dustin Childs, Latest Warnings, Microsoft Excel, Microsoft Exchange Server zero-day, Recorded Future, Remote Desktop Protocol, Security Tools, Time to Patch, Trend Micro Zero Day Initiative
Microsoft Corp. today released updates to quash at least 55 security bugs in its Windows operating systems and other software. Two of the patches address vulnerabilities that are already being used in ...
Krebs on Security
Microsoft Patch Tuesday, September 2021 Edition

Microsoft Patch Tuesday, September 2021 Edition

| | adobe, Allan Liska, Apple, Chrome, CVE-2021-28316, CVE-2021-30860, CVE-2021-36965, CVE-2021-40444, google, Immersive Labs, Kevin Breen, Microsoft Patch Tuesday September 2021, Recorded Future, Time to Patch
Microsoft today pushed software updates to plug dozens of security holes in Windows and related products, including a vulnerability that is already being exploited in active attacks. Also, Apple has issued an ...
Krebs on Security
Microsoft Patch Tuesday, February 2021 Edition

Microsoft Patch Tuesday, February 2021 Edition

| | CVE-2020-1472, CVE-2021-1732, CVE-2021-21148, CVE-2021-24078, Immersive Labs, Kevin Breen, Microsoft Patch Tuesday February 2021, Netlogon, Recorded Future, Security Tools, Time to Patch, ZeroLogon
Microsoft today rolled out updates to plug at least 56 security holes in its Windows operating systems and other software. One of the bugs is already being actively exploited, and six of ...
Krebs on Security
Microsoft Patch Tuesday, January 2021 Edition

Microsoft Patch Tuesday, January 2021 Edition

| | Allan Liska, AskWoody.com, CVE-2018-8514, CVE-2019-1409, CVE-2019-1458, CVE-2020-1660, CVE-2021-1647, CVE-2021-1648, CVE-2021-1709, Dustin Childs, Immersive Labs, Kevin Breen, Recorded Future, Time to Patch, Trend Micro's ZDI Initiative, Windows Defender
Microsoft today released updates to plug more than 80 security holes in its Windows operating systems and other software, including one that is actively being exploited and another which was disclosed prior ...
Krebs on Security
Patch Tuesday, Good Riddance 2020 Edition

Patch Tuesday, Good Riddance 2020 Edition

| | adobe, Allan Liska, Microsoft Office, Microsoft Patch Tuesday December 2020, Microsoft Teams, Oskars Vegeris, Recorded Future, Security Tools, Time to Patch
Microsoft today issued its final batch of security updates for Windows PCs in 2020, ending the year with a relatively light patch load. Nine of the 58 security vulnerabilities addressed this month ...
Krebs on Security
Microsoft Patch Tuesday, Sept. 2020 Edition

Microsoft Patch Tuesday, Sept. 2020 Edition

| | Alan Liska, CVE-2020-1210, CVE-2020-16875, Dustin Childs, Ivanti, Microsoft Exchange Server, Microsoft Patch Tuesday September 2020, Microsoft Sharepoint, Recorded Future, Security Tools, Tenable, Time to Patch, Todd Schell, Zero Day Initiative
Microsoft today released updates to remedy nearly 130 security vulnerabilities in its Windows operating system and supported software. None of the flaws are known to be currently under active exploitation, but 23 ...
Krebs on Security
Load more