credential theft

In an era where enterprise networks are under increasing threat from ever-more sophisticated adversaries, Microsoft’s introduction of delegated Managed Service Accounts (dMSAs) in Windows Server 2025 was heralded as a transformational leap for Windows security. Promising to eradicate a host of...

A critical vulnerability in DotNetNuke (DNN), catalogued as CVE-2025-52488, has placed the spotlight on the complex interplay of Windows file system operations, .NET behavior, and subtle Unicode normalization pitfalls. Although DNN is recognized for its robust enterprise-ready architecture and...

Important Security Update: Multi-Factor Authentication (MFA) Now Mandatory To enhance the security of our community and protect user accounts, WindowsForum.com now requires multi-factor authentication (MFA) for all accounts. This is no longer optional. Why MFA? The rise in credential theft and...

NTLM relay attacks, once thought to be a relic of the past, have re-emerged as a significant threat in modern Active Directory environments. Despite years of research and incremental security improvements, most enterprise domains remain susceptible to these attacks, creating wide-reaching risks...

The cybersecurity landscape has never been more volatile, and few recent warnings have reflected this more acutely than the joint Fact Sheet released by the Cybersecurity and Infrastructure Security Agency (CISA) in collaboration with the Federal Bureau of Investigation (FBI), the Department of...

For many organizations, the expectation is that internal communications on their Microsoft 365 tenants are inherently more trustworthy—after all, who would question an authentication-free email from the company’s own domain? Yet a recent investigation by the Varonis Managed Data Detection and...

In recent months, the cybersecurity landscape has been rocked by a rapidly escalating campaign in which cybercriminals have weaponized TeamFiltration, a penetration testing tool, to orchestrate massive attacks on Office 365 accounts. According to incident data and credible analyses from leading...

A new chapter in the ongoing battle for cloud security unfolded recently, as researchers disclosed a brazen and remarkably methodical campaign that has compromised over 80,000 user accounts spanning hundreds of organizations. The abuse of penetration testing tools—originally intended as shields...

A staggering wave of panic has rippled across the United States in the wake of what experts are calling one of the largest security breaches in digital history. More than 184 million passwords—alongside user emails and other sensitive personal data—have potentially been exposed, implicating some...

A massive data breach has triggered shockwaves throughout the cybersecurity landscape, with over 184 million passwords reportedly leaked and some of the world’s most prominent technology brands implicated. This incident is distinguished not only by its monumental scale but also by the...

The rapid evolution of cybercrime has brought forth a new era of sophisticated phishing operations, with attackers now leveraging complex “Phishing-as-a-Service” (PhaaS) platforms to target lucrative enterprise networks. One such operation, identified in research as Storm-1575 and more widely...

Phishing attacks continue to evolve, leveraging not only increasingly sophisticated social engineering techniques but also the legitimate tools and platforms users trust every day. The most recent wave of attacks, as publicized by cybersecurity researchers and industry reports, reveals that...

In the still-expanding digital landscape of 2024, another catastrophic cybersecurity incident has emerged, sending shockwaves across the United States and beyond. Over 184 million passwords, along with associated email addresses and critical login links, have been exposed in a sweeping data...

Phishing attacks are evolving at a rapid pace, becoming increasingly sophisticated, and exploiting trusted platforms in ways that challenge even tech-savvy users. Recently, cybersecurity researchers uncovered a troubling new scam leveraging Google Apps Script—a legitimate Google service—to...

As phishing threats continue to evolve, attackers are leveraging increasingly sophisticated methods that use legitimate cloud platforms to disguise their malicious campaigns. Recent research has uncovered a worrying trend: the abuse of Google Apps Script as a vehicle for launching convincing...

The recent disclosure of vulnerability CVE-2025-24071 in Microsoft’s Windows File Explorer serves as a stark reminder of how legacy systems and seemingly innocuous user actions can become the gateway to significant cyber threats. Affecting Windows 11 (23H2) and earlier versions that support...

Microsoft Windows users across the globe are facing a new and insidious threat that exploits a trusted channel—genuine purchase notification emails from Microsoft itself. In a sophisticated campaign first discovered by the security research team at Kaspersky, attackers are leveraging real...

In a case that has electrified both federal cybersecurity circles and the wider tech community, a detailed whistleblower disclosure alleges the Department of Government Efficiency (DOGE), under the controversial leadership of Elon Musk, was complicit in a significant data breach at the National...

As new revelations surface about cloud security, the ubiquitous presence of SaaS solutions in enterprise environments is coming under renewed scrutiny. The recent warning issued by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) about potential broader attacks exploiting...

Few threats in today’s digital landscape have demonstrated such rapid, widespread, and evolving danger as the Lumma information-stealing malware currently impacting hundreds of thousands of Windows PCs. In just two months, Microsoft’s security researchers detected Lumma—also known as LummaC2—on...