Hewlett Packard Enterprise (HPE) has revealed that Kremlin-backed hacking group Cozy Bear gained unauthorized access to their cloud-based email environment and exfiltrated data from May to December 2023. The hacking group, also known as Midnight Blizzard and APT29, entered the network via a compromised internal HPE Office 365 email account, through which they also gained access to Sharepoint servers. This is the second major corporate network breach by the group reported recently; a similar breach of Microsoft’s corporate network was disclosed five days prior.
Vidar Infostealer Bypasses Google Chrome’s ABE Encryption via APC Injection
A sophisticated evasion technique developed by Vidar infostealer operators successfully bypasses Google Chrome’s Application-Bound Encryption (ABE). Introduced in 2024, ABE was designed to protect browser-stored
