Incidents – Page 4 – WindowsTechs.com

If an Office 365 Disaster Happened, What Would You Do?

Posted on March 19, 2019 by Tony Redmond

A question none of us like to think about too much is what we would do if a natural or man-made disaster took out Office 365 and disrupted service for an extended period. The good news is that the way Microsoft has built out Office 365 into datacenter regions helps to limit the effect of any outage, but the fact still remains that something bad could happen. What would you do then?

The post If an Office 365 Disaster Happened, What Would You Do? appeared first on Petri.

Continue reading If an Office 365 Disaster Happened, What Would You Do?→

DNS Manipulation in Venezuela in regards to the Humanitarian Aid Campaign

Posted on February 13, 2019 by GReAT

This website for volunteers in Venezuela appeared online on February 6th. Only a few days later, on February 11th, the day after the public announcement of the initiative, another almost identical website appeared with a very similar domain name and structure. Continue reading DNS Manipulation in Venezuela in regards to the Humanitarian Aid Campaign→

Forcing the Adversary to Pursue Insider Theft

Posted on February 9, 2019 by Richard Bejtlich

Jack Crook pointed me toward a story by Christopher Burgess about intellectual property theft by “Hongjin Tan, a 35 year old Chinese national and U.S. legal permanent resident… [who] was arrested on December 20 and charged with theft o… Continue reading Forcing the Adversary to Pursue Insider Theft→

Politician’s Reactions on VIP Hack in Germany

Posted on January 7, 2019 by Roger Halbheer

I recently complained about the Swiss government and our inability in Switzerland to really drive Cybersecurity forward (Federal Council not deciding again – Switzerland falling behind on Cybersecurity). It was one of the most-read blog posts I w… Continue reading Politician’s Reactions on VIP Hack in Germany→

DarkVishnya: Banks attacked through direct connection to local network

Posted on December 6, 2018 by Sergey Golovanov

In 2017-2018, Kaspersky Lab specialists were invited to research a series of cybertheft incidents. Each attack had a common springboard: an unknown device directly connected to the company’s local network. Continue reading DarkVishnya: Banks attacked through direct connection to local network→

KoffeyMaker: notebook vs. ATM

Posted on December 4, 2018 by Sergey Golovanov

Kaspersky Lab’ experts investigated one such toolkit, dubbed KoffeyMaker, in 2017-2018, when a number of Eastern European banks turned to us for assistance after their ATMs were quickly and almost freely raided. It soon became clear that we were dealing with a black box attack. Continue reading KoffeyMaker: notebook vs. ATM→

Does AI solve it all?

Posted on October 9, 2018 by Roger Halbheer

Artificial Intelligence and Machine Learning hold a lot of promises in security. They will help us address the problems around false positives and detecting anomalies. There is a lot of hope and a lot of promises by the vendors in that space. Microsoft… Continue reading Does AI solve it all?→

Dark Tequila Añejo

Posted on August 21, 2018 by GReAT

Dark Tequila is a complex malicious campaign targeting Mexican users, with the primary purpose of stealing financial information, as well as login credentials to popular websites that range from code versioning repositories to public file storage accounts and domain registrars. Continue reading Dark Tequila Añejo→

KeyPass ransomware

Posted on August 13, 2018 by Orkhan Mamedov

In the last few days, our anti-ransomware module has been detecting a new variant of malware – KeyPass ransomware. According to our information, the malware is propagated by means of fake installers that download the ransomware module. Continue reading KeyPass ransomware→

Roaming Mantis dabbles in mining and phishing multilingually

Posted on May 18, 2018 by Suguru Ishimaru

In May, while monitoring Roaming Mantis, aka MoqHao and XLoader, we observed significant changes in their M.O. The group’s activity expanded geographically and they broadened their attack/evasion methods. Their landing pages and malicious apk files now support 27 languages covering Europe and the Middle East. Continue reading Roaming Mantis dabbles in mining and phishing multilingually→