cognitive cybersecurity intelligence

News and Analysis

Two ransomware groups abuse Microsoft’s Office 365 platform to gain access to target organizations

Ransomware groups identified as STAC5143 and STAC5777 have exploited Microsoft Office 365’s services and default settings to target enterprise users, according to an investigation by Sophos researchers. Microsoft Teams’ built-in remote control capabilities and default setting, which allows external users to contact internal users, were used to execute attacks. To prevent further attacks, organizations have been advised to restrict Teams calls from outside organizations and limit the use of remote access applications.

Source: securityaffairs.com –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

More Posts

What is memory forensics?

What is memory forensics?

Once used to recover encrypted data, memory forensics is now a core tool in the fight against rootkits

CISA Warns of Motex LANSCOPE Endpoint Manager Vulnerability Exploited in Attacks

CISA Warns of Motex LANSCOPE Endpoint Manager Vulnerability Exploited in Attacks

CISA has issued a critical alert regarding a severe vulnerability in Motex LANSCOPE Endpoint Manager, a popular tool for managing IT assets across networks. Dubbed

Warning issued over critical flaws spotted in TP-Link routers

Warning issued over critical flaws spotted in TP-Link routers

Researchers have spotted a pair of flaws in TP-Link routers, including a variation of a previously patched vulnerability

Kaufman County’s data breach was their second one in three weeks

Kaufman County’s data breach was their second one in three weeks

Rachel Means reports that the October 20 cyberattack that Kaufman County, Texas, confirmed yesterday was actually the second breach the county had in October. Kaufman