Microsoft has found a file-transfer tool used by the Platinum APT that leverages Intel Active Management Technology to stealthily load malware onto networked computers.
Browsing Tag: Microsoft
Researchers have ported the EternalBlue exploit to Windows 10, meaning that any unpatched version of Windows can be affected by the NSA attack.
QakBot, a worm-like, information-stealing strain of malware is back and locking users out of their Active Directory accounts.
Microsoft quietly patched a critical vulnerability found by Google’s Project Zero team in the Malware Protection Engine.
Mark Dowd discusses why certain exploit mitigations have been so successful in driving up the cost of exploit development for attackers.
Phishing sites are deploying freely available TLS certificates in order to dupe victims into thinking they’re visiting a safe site.
A worm called EternalRocks has been spreading seven Windows SMB exploits leaked by the ShadowBrokers, including EternalBlue, which was used to spread WannaCry.
Mike Mimoso and Chris Brook discuss WannaCry, Microsoft’s response, the killswitches, a potential link with Lazarus Group, and what the future holds for the ShadowBrokers.
Researchers claim that APT3, widely believed to be a China-based threat actor, is directly connected to the Chinese Ministry of State Security (MSS).
Matthew Hickey, founder of HackerHouse and @hackerfantastic on Twitter, talks to Mike Mimoso about Friday’s WannaCry ransomware outbreak.