data theft – Page 2 – WindowsTechs.com

Bypassing 2FA with phishing and OTP bots

Posted on June 10, 2024 by Olga Svistunova

Explaining how scammers use phishing and OTP bots to gain access to accounts protected with 2FA. Continue reading Bypassing 2FA with phishing and OTP bots→

TotalRecall shows how easily data collected by Windows Recall can be stolen

Posted on June 5, 2024 by Zeljka Zorz

Ethical hacker Alexander Hagenah has created TotalRecall, a tool that demonstrates how malicious individuals could abuse Windows’ newly announced Recall feature to steal sensitive information. TotalRecall results (Source: Alexander Hagenah) Copil… Continue reading TotalRecall shows how easily data collected by Windows Recall can be stolen→

361 million account credentials leaked on Telegram: Are yours among them?

Posted on June 4, 2024 by Zeljka Zorz

A new trove of 361 million email addresses has been added to Have I Been Pwned? (HIBP), the free online service through which users can check whether their account credentials and other data has been compromised in one or more data breaches. Have I Bee… Continue reading 361 million account credentials leaked on Telegram: Are yours among them?→

Snowflake compromised? Attackers exploit stolen credentials

Posted on May 31, 2024 by Zeljka Zorz

Have attackers compromised Snowflake or just their customers’ accounts and databases? Conflicting claims muddy the situation. What is Snowflake? Snowflake is cloud-based data storage and analytics company based in the US, and claims nearly 9,500 … Continue reading Snowflake compromised? Attackers exploit stolen credentials→

Moonstone Sleet: A new North Korean threat actor

Posted on May 29, 2024 by Zeljka Zorz

Microsoft has named yet another state-aligned threat actor: Moonstone Sleet (formerly Storm-1789), which engages in cyberespionage and ransomware attacks to further goals of the North Korean regime. “Moonstone Sleet uses tactics, techniques, and … Continue reading Moonstone Sleet: A new North Korean threat actor→

Message board scams

Posted on May 27, 2024 by CFR team

Here’s how scams target buyers and sellers on online message boards, and how the gangs behind them operate. Continue reading Message board scams→

Stealers, stealers and more stealers

Posted on May 22, 2024 by GReAT

In this report, we discuss two new stealers: Acrid and ScarletStealer, and an evolution of the known Sys01 stealer, with the latter two dividing stealer functionality across several modules. Continue reading Stealers, stealers and more stealers→

ToddyCat is making holes in your infrastructure

Posted on April 22, 2024 by Andrey Gunkin, Alexander Fedotov, Natalya Shornikova

We continue to report on the APT group ToddyCat. This time, we’ll talk about traffic tunneling, constant access to a target infrastructure and data extraction from hosts. Continue reading ToddyCat is making holes in your infrastructure→

New covert SharePoint data exfiltration techniques revealed

Posted on April 10, 2024 by Zeljka Zorz

Varonis Threat Labs researchers have uncovered two techniques attackers can use can use for covert data and file exfiltration from companies’ SharePoint server. “These techniques can bypass the detection and enforcement policies of traditio… Continue reading New covert SharePoint data exfiltration techniques revealed→

Fujitsu finds malware on company systems, investigates possible data breach

Posted on March 18, 2024 by Helga Labus

Fujitsu Limited, the largest Japanese IT services provider, has announced that several of the company’s computers have been compromised with malware, leading to a possible data breach. Known details about the Fujitsu data breach The company publi… Continue reading Fujitsu finds malware on company systems, investigates possible data breach→