Audio player loading… Hackers have been spotted abusing the Microsoft Partner Network feature for Azure AD in an attempt to steal corporate emails and other sensitive data (opens in new tab) . Microsoft and cybersecurity pros Proofpoint worked together (opens in new tab) to combat the threats, explaining how they discovered hackers posing as legitimate companies and successfully getting verified in the Microsoft Cloud Partner Program (MCPP). Getting verified as a legitimate business allowed the crooks to register verified OAuth apps in Azure AD which were, in reality, malicious and used to steal people’s emails via phishing. To make matters worse, Proofpoint said crooks could have also used this access to steal calendar information, as well. Running BEC attacks The threat is particularly worrying as his type of information can be used for cyberespionage, business email compromise attacks, or as a stepping stone towards a more serious form of cybercrime. … [Read more...] about These malicious apps are tricking Microsoft, and are now after your PC
Cybersecurity
This PoS malware blocks contactless payments to steal credit card data
Audio player loading… Cybersecurity researchers have spotted new versions of a known Point of Sale (PoS) malware (opens in new tab) that blocks advanced features to be able to steal credit card data. The team from Kaspersky observed the Prilex PoS malware versions 06.03.8070, 06.03.8072, and 06.03.8080, in the wild. These versions were released in November 2022, and prevent the terminal from accepting contactless credit card transactions. Contactless transactions, made possible due to near-field communication (NFC) chips found in both PoS terminals on one end, and credit/debit cards, smartphones and smart watches on the other, exploded in popularity during the Covid-19 pandemic. The technology allows consumers to purchase goods and services without actually inserting their credit cards, making it almost impossible for hackers to steal the data via PoS malware. Swiping away the data However to work around this issue, the threat actors deployed a new … [Read more...] about This PoS malware blocks contactless payments to steal credit card data
Many firms are working with risky third party vendors
Audio player loading… Despite having well-defended digital premises and endpoints (opens in new tab) , many firms are at risk of cyberattacks because they work with different vendors and third parties that aren’t as secure. This is according to a new report from cybersecurity ratings firm SecurityScorecard, which analyzed more than 235,000 organizations worldwide, as well as 73,000 vendors and products they use, to find that virtually all firms (98%) have vendor relationships with at least one third party that suffered a data breach in the last two years. What’s more, half of the organizations have indirect relationships (as in used by the third-party vendors) with at least 200 companies that suffered a cyberattack in the last two years. F for security For every third-party vendor in a supply chain, businesses usually have indirect relationships with 60 to 90 times that number of fourth-party relationships, the researchers have found. With third parties being … [Read more...] about Many firms are working with risky third party vendors
Microsoft’s security team says it’s tracking over 100 ransomware actors
Audio player loading… Microsoft has revealed it is tracking more than 100 threat actors deploying ransomware (opens in new tab) against businesses around the world. In a recent Twitter thread (opens in new tab) , the company discussed the current state of ransomware, saying the Ransomware-as-a-service (RaaS) ecosystem continues evolving and expanding. The threat actors (of which the company tracks more than 100) are bringing “varying techniques, goals, and skillsets” to the fray. Right now, more than 50 unique ransomware families are active and in use, the company said. Focusing on the build-up While phishing remains the number one way for hackers to deliver ransomware payloads to victims, they’re “increasingly” relying on other techniques, as well, Microsoft added. Among others, they’re using malicious ads to deliver victims to websites hosting ransomware and other malware. Some are looking to exploit recently patched vulnerabilities, in hopes … [Read more...] about Microsoft’s security team says it’s tracking over 100 ransomware actors