data breach

What’s Happening in the Cloud? Hold onto your keyboards, WindowsForum readers—because 20,000 Microsoft Azure accounts in the European manufacturing sector have fallen victim to a targeted phishing campaign. That’s right, 20,000 accounts! According to researchers from Palo Alto Networks’ Unit 42...

In a world where cloud computing has become the backbone of enterprise operations, security is king—and no one knows this better than Amazon. The tech giant has put the brakes on its internal rollout of Microsoft 365, delaying the launch by a full year. This significant decision comes on the...

In the ever-evolving landscape of cybersecurity threats, it’s crucial that Windows users stay informed about vulnerabilities that could potentially jeopardize their systems. The latest significant warning comes in the form of CVE-2024-49071, an information disclosure vulnerability in Windows...

In a landscape where collaboration tools have become essential for modern businesses, Amazon.com Inc. has made a significant decision that reflects deep-seated cybersecurity concerns. The company has decided to delay the rollout of Microsoft Corp.'s cloud-based Office suite for a full year. This...

On November 12, 2024, the Microsoft Security Response Center released critical information regarding CVE-2024-49000, a serious Remote Code Execution (RCE) vulnerability impacting the SQL Server Native Client. This flaw has the potential to expose a wide range of SQL Server installations to...

In the ever-evolving landscape of cybersecurity, vulnerabilities can emerge from even the most trusted software. Microsoft's recent notification about CVE-2024-48993 highlights a significant SQL Server Native Client (SNAC) vulnerability that poses serious risks for Windows users and database...

Understanding CVE-2024-43546: Windows Cryptographic Information Disclosure Vulnerability In the ever-evolving landscape of cybersecurity, new vulnerabilities appear almost every day, and it’s the vigilance of professionals and users alike that keeps the threat at bay. One of the latest...

In a recent announcement, the Indian Computer Emergency Response Team (CERT-In) has issued a stark warning to users of Windows 10 and Windows 11 regarding serious security vulnerabilities. These weaknesses have the potential to enable attackers to gain elevated privileges on affected systems...

In an important update released just recently, Microsoft has addressed the critical Virtualization-Based Security (VBS) vulnerability dubbed CVE-2024-21302, a flaw that could potentially allow attackers to downgrade modern Windows operating systems without user awareness. This significant...

Thousands of Optus customers who had personal details stolen in a cyberattack and leaked on the dark web may never find out how the breach happened after the telecommunications group pleaded “legal professional privilege” to try to stop a report into the hack being released. Optus asks court to...

Cyber criminals have followed through on their threats of leaking the sensitive details of 10,000 people, after the company refused to bow to their extortion attempts. Cyber criminals have targeted yet another Australian small business by stealing and leaking the data of 10,000 people. Last...

Original release date: January 8, 2021 Summary This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. This Alert is a companion alert to Link Removed...

:eek:

Original release date: October 1, 2020 Summary This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques. In light of heightened tensions between the United States and...

Original release date: May 5, 2020 Summary This is a joint alert from the United States Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and the United Kingdom’s National Cyber Security Centre (NCSC). CISA and NCSC continue to see indications that...

Original release date: December 5, 2019 Summary This Alert is the result of recent collaboration between the Department of the Treasury Financial Sector Cyber Information Group (CIG) and the Department of the Treasury’s Financial Crimes Enforcement Network (FinCEN) to identify and share...

The browser and search engine for business In our mission to empower people with knowledge with Microsoft 365, one critical opportunity is the internet. We know that 60% of the time people spend on the PC is within the web browser, and it has become the primary way we work, learn and play...

About half of organizations say cybercrime is under-reported at their organizations, even when reporting is required. Continue reading...

:eek::razz:

Original release date: April 27, 2017 Systems Affected Networked Systems Overview The National Cybersecurity and Communications Integration Center (NCCIC) has become aware of an emerging sophisticated campaign, occurring since at least May 2016, that uses multiple malware implants. Initial...