Microsoft Exchange Server Has a Zero-Day Problem

2 years, 6 months ago

Microsoft Exchange Server Has a Zero-Day Problem

There were global ripples in tech policy this week as VPN providers were forced to pull out of India as the country’s new data collection law takes hold, and UN countries prepare to elect a new head of the International Telecommunications Union—a key internet standards body. In a blog post, Microsoft described the first flaw as a server-side request forgery vulnerability, and the second as “an attack that allows remote code execution on a vulnerable server when PowerShell is accessible to the attacker.” The post also provides guidance for how on-premises Microsoft Exchange customers should mitigate the attack. James Olson, a former chief of CIA counterintelligence, told Reuters, “If we’re careless, if we’re reckless, and we’ve been penetrated, then shame on us.” On Wednesday, a former National Security Agency staffer was charged with three violations of the Espionage Act for allegedly attempting to sell classified national defense information to an unnamed foreign government, according to court documents unsealed this week. On Tuesday, hackers hijacked Fast Company’s content management system, blasting two obscene push notifications to the publication’s Apple News followers.

Microsoft Iran Reuters Cia Fast Company Exchange Server Vulnerable Server

CERT-In identifies multiple vulnerabilities in Microsoft products and Red Hat Linux Kernel

2 years, 8 months ago

CERT-In identifies multiple vulnerabilities in Microsoft products and Red Hat Linux Kernel

Microsoft

Number of exploit attempts increased 6x after Microsoft's revelation of four zero-day vulnerabilities: Report

4 years ago

Number of exploit attempts increased 6x after Microsoft's revelation of four zero-day vulnerabilities: Report

Cpr

Microsoft Exchange server attacked by Hafnium, company says

4 years, 1 month ago

Microsoft Exchange server attacked by Hafnium, company says

China

Discover Related

Part-time job frauds and unauthorised transactions top cybercrimes in Hyderabad

1 week, 4 days ago

Part-time job frauds and unauthorised transactions top cybercrimes in Hyderabad

Hyderabad: Cybercrimes being carried out using modus operandi of various kinds are being registered with Rachakonda cybercrime wing. It has been noticed that loss of amounts within `10 lakh pertain …

Deccan Chronicle

Unauthorised Transactions

WazirX hack: Consumer court dismisses lawsuit, victims to approach Supreme Court in April

2 weeks, 4 days ago

WazirX hack: Consumer court dismisses lawsuit, victims to approach Supreme Court in April

New Delhi: A consumer court has dismissed a class action filed by a group of 40 individuals affected by domestic crypto exchange WazirX losing $233 million in an alleged hack …

India Khan Mint Wazirx Hack

Crypto exchange OKX suspends the DeFi service which drew EU scrutiny

4 weeks ago

Crypto exchange OKX suspends the DeFi service which drew EU scrutiny

Digital-asset exchange OKX has suspended a service used by hackers to launder proceeds from a $1.5 billion heist on trading platform Bybit, after drawing scrutiny from European watchdogs. Regulators had …

Hindustan Times

Service Web3 Bybit Okx Markets

Crypto Exchange OKX Suspends DeFi Service That Drew EU Scrutiny

4 weeks ago

Crypto Exchange OKX Suspends DeFi Service That Drew EU Scrutiny

-- Digital-asset exchange OKX has suspended a service used by hackers to launder proceeds from a $1.5 billion heist on trading platform Bybit, after drawing scrutiny from European watchdogs. “This …

Service Okx

Cryptocurrency exchange says it was victim of $1.5 billion hack

1 month, 3 weeks ago

Cryptocurrency exchange says it was victim of $1.5 billion hack

A major cryptocurrency exchange says it was the victim of a sophisticated hack that stole about $1.5 billion worth of digital currency, marking one of the biggest online thefts of …

Associated Press

Crypto Hack

Global crypto scam with Chinese links busted in Hyderabad

1 month, 3 weeks ago

Global crypto scam with Chinese links busted in Hyderabad

A transnational cybercrime syndicate operating through Telegram and WhatsApp was busted by the Cybercrime unit of the Cyberabad police, in which fraudsters impersonated Morgan Stanley. The investigation revealed that the …

Crypto Chinese Whatsapp Telegram

WazirX $230million hack: Creditors given two ways to recover stolen crypto -- ’extended delays till 2030 or...’

2 months, 1 week ago

WazirX $230million hack: Creditors given two ways to recover stolen crypto -- ’extended delays till 2030 or...’

Indian cryptocurrency exchange WazirX has announced that the users will be able to receive stolen crypto funds by April 2025 if they approve the restructuring and scheme. WazirX scheme The …

Singapore Scheme Approved Wazirx

10 arrested in Vellore-based financial firm scam

2 months, 1 week ago

10 arrested in Vellore-based financial firm scam

The Economic Offences Wing has arrested 10 persons so far in connection with a scam involving Vellore-based LNS International Financial Services, where the company cheated over 5046 depositors and swindled …

Eow

Payment gateways under ED probe in crypto scam? Paytm, Razorpay reject reports – ‘Factually inaccurate’

2 months, 3 weeks ago

Payment gateways under ED probe in crypto scam? Paytm, Razorpay reject reports – ‘Factually inaccurate’

Eight payment gateways, including Paytm, RazorPay, PayU, and Easebuzz, have come under the Enforcement Directorate scanner in connection with a ₹2,200 crore raised across 20 states and linked to 10 …

Media Enforcement Scam Payment

Payment gateways under ED probe in crypto scam? Paytm, Razorpay reject reports – ‘Factually inaccurate’

2 months, 3 weeks ago

Payment gateways under ED probe in crypto scam? Paytm, Razorpay reject reports – ‘Factually inaccurate’

Eight payment gateways, including Paytm, RazorPay, PayU, and Easebuzz, have come under the Enforcement Directorate scanner in connection with a ₹2,200 crore raised across 20 states and linked to 10 …

Media Enforcement Scam Payment

Getting cheated in a videogame let him to a world of online crime

3 months, 2 weeks ago

Getting cheated in a videogame let him to a world of online crime

Ricky Handschumacher’s first step on a path that would earn him millions of dollars in stolen cryptocurrency and a run-in with the law happened during a game of Halo 3. …

Cryptocurrency Online Phone Wolverine

Cyberattack: US Treasury breached by China-based hackers

Top News 3 months, 2 weeks ago

Cyberattack: US Treasury breached by China-based hackers

The US Treasury Department said Monday that a China state- The incident happened earlier this month, when the actor compromised a third-party cybersecurity service provider and was able to remotely …

Hindustan Times

China Department Chinese Breach

Entain sued by Australian regulator over money laundering allegations

3 months, 4 weeks ago

Entain sued by Australian regulator over money laundering allegations

For free real time breaking news alerts sent straight to your inbox sign up to our breaking news emails Sign up to our free breaking news emails Sign up to …

The Independent

Allegations Ctf Entain

Bombay High Court Passes John Doe Order Against Threat Of Leaking HDFC Life's Customer Data

4 months, 1 week ago

Bombay High Court Passes John Doe Order Against Threat Of Leaking HDFC Life's Customer Data

In a ransomware extortion threat against HDFC Life that sought to leak its customers' confidential information, the Bombay High Court has issued a temporary injunction against unknown defendants from publishing, …

Live Law

Media Court Data Information

Australia warned it is lagging behind on cryptocurrency regulation as Trump's election ignites Bitcoin boom

4 months, 2 weeks ago

Australia warned it is lagging behind on cryptocurrency regulation as Trump's election ignites Bitcoin boom

Crypto's moment has arrived — that's if you're one of the true believers. "The community expects that ASIC will enforce the laws that have been determined by the parliament, and …

ABC

Australia Industry Regulation Crypto

Trump’s Commerce secretary pick backas a crypto company that can’t seem to stay out of trouble

4 months, 3 weeks ago

Trump’s Commerce secretary pick backas a crypto company that can’t seem to stay out of trouble

New York CNN — Howard Lutnick, the Cantor Fitzgerald CEO who’s been tapped to run the US Commerce Department, has in recent years become a prominent cheerleader for Tether, the …

CNN

Treasury Lutnick Tether Commerce Secretary

Bitfinex Hacker Gets 5 Years for $10 Billion Bitcoin Heist

4 months, 4 weeks ago

Bitfinex Hacker Gets 5 Years for $10 Billion Bitcoin Heist

In perhaps the most adorable hacker story of the year, a trio of technologists in India found an innovative way to circumvent Apple’s location restrictions on AirPod Pro 2s so …

Wired

Cryptocurrency Morgan Van Hack

Cryptocurrency exchange network accused of helping Russia hit with sanctions

6 months, 2 weeks ago

Cryptocurrency exchange network accused of helping Russia hit with sanctions

WASHINGTON — A network of people and virtual currency exchanges associated with harboring Russian cybercrime were hit with sanctions on Thursday, in a government-wide crackdown on cybercrime that could assist …

Associated Press

Treasury Cyber Criminals Ivanov Virtual Currency

Tech company loses Rs 33 lakh to cyber fraud

6 months, 4 weeks ago

Tech company loses Rs 33 lakh to cyber fraud

HYDERABAD: An IT company in Begumpet lost over Rs 33 lakh after cyber fraudsters allegedly hacked into their official email ID and sent a mail to one of their global …

New Indian Express

Tech Company

Blame game continues between WazirX and Liminal Custody over Rs 2000 crore hack

7 months ago

Blame game continues between WazirX and Liminal Custody over Rs 2000 crore hack

BENGALURU: Singapore-headquartered Liminal Custody, which is an estranged security partner of WazirX, on Monday claimed that as per the audit findings, the breach might have occurred from the crypto exchange …

New Indian Express

Singapore Liminal Custody Liminal Game Continues

Mudrex crypto exchange obtains court order against scam websites misusing its name

7 months, 2 weeks ago

Mudrex crypto exchange obtains court order against scam websites misusing its name

The Indian cryptocurrency exchange Mudrex obtained a court order that will direct the Indian government to take down a number of scam websites misusing its name and brand, per its …

India Crypto Indian Our Users

ASIC takes stock exchange to court alleging 'very significant corporate governance failure'

8 months ago

ASIC takes stock exchange to court alleging 'very significant corporate governance failure'

The nation's corporate cop is taking the Australian stock exchange to court — suing it for allegedly making misleading statements about the progress of a major technology upgrade. It is …

ABC

Market Corporate Governance Chess Stock

WazirX CEO Nischal Shetty shares move to restore account balances and undo all platform trades post-withdrawal halt

8 months ago

WazirX CEO Nischal Shetty shares move to restore account balances and undo all platform trades post-withdrawal halt

Indian crypto exchange WazirX announced that all user balances would be restored to what they were on July 18, 1 PM IST, prior to a cyberattack against one of the …

India Users Wazirx 1 Pm Ist

Today’s top tech news: Microsoft blames Delta Air Lines; Elon Musk criticised by UK government; India’s e-rupee progress

8 months, 1 week ago

Today’s top tech news: Microsoft blames Delta Air Lines; Elon Musk criticised by UK government; India’s e-rupee progress

Microsoft blames Delta Air Lines for post-IT outage recovery Microsoft joined the fray to defend itself and criticise Delta after the airline company blamed both it and cybersecurity company CrowdStrike …

India Microsoft Musk Elon Musk

Microsoft says that a cyberattack triggered the hours-long outage impacting Azure customers

8 months, 1 week ago

Microsoft says that a cyberattack triggered the hours-long outage impacting Azure customers

A global Microsoft Azure outage that impacted a range of services for consumers Tuesday — from reports of stalling Outlook emails to trouble ordering on Starbucks' mobile app — was …

Report Starbucks Microsoft Service Azure

Microsoft says that a cyberattack triggered the hours-long outage impacting Azure customers

8 months, 2 weeks ago

Microsoft says that a cyberattack triggered the hours-long outage impacting Azure customers

NEW YORK — A global Microsoft Azure outage that impacted a range of services for consumers Tuesday — from reports of stalling Outlook emails to trouble ordering on Starbucks’ mobile …

Associated Press

Service Report Starbucks Microsoft Azure

WazirX crypto exchange hack: how much of the assets was lost, CEO Nischal Shetty’s announcement, and what happens next

8 months, 2 weeks ago

WazirX crypto exchange hack: how much of the assets was lost, CEO Nischal Shetty’s announcement, and what happens next

Indian crypto exchange WazirX said approximately 45% of its crypto assets was affected by a cyber attack on July 18 that led to the loss of more than $230 million …

Crypto Assets Exchange Wazirx

WazirX Signers' Machine Not Compromised In $235-Million Breach, Findings Report Claims Liminal’s Infrastructure Was Likely Vulnerable

8 months, 2 weeks ago

WazirX Signers' Machine Not Compromised In $235-Million Breach, Findings Report Claims Liminal’s Infrastructure Was Likely Vulnerable

WazirX has come out with a report on initial findings in the aftermath of the July 18 cyberattack. WazirX's report, dated July 25, states, "Our preliminary findings have not found …

ABP News

Report Breach Liminal Wazirx Signers

WazirX crypto exchange halts deposits and withdrawals after $230 million hack; reported incident to Indian regulators

8 months, 3 weeks ago

WazirX crypto exchange halts deposits and withdrawals after $230 million hack; reported incident to Indian regulators

Indian cryptocurrency exchange WazirX said that it had reached out to the Indian police, the Financial Intelligence Unit India, CERT-In, and over 500 other exchanges in order to respond to …

India Crypto Indian Exchange

Don't fall for quick fixes: How Microsoft's global IT outage gave rise to scams – Firstpost

8 months, 3 weeks ago

Don't fall for quick fixes: How Microsoft's global IT outage gave rise to scams – Firstpost

Cybersecurity experts and agencies worldwide are cautioning people about a surge in opportunistic hacking attempts related to the recent IT outage. While there is no evidence that the outage was …

Global Scams Personal Information Airlines

Australia's ‘malicious websites and unofficial code’ warning after Microsoft outage

8 months, 3 weeks ago

Australia's ‘malicious websites and unofficial code’ warning after Microsoft outage

Australia's cyber intelligence agency said on Saturday that "malicious websites and unofficial code" were being released online claiming to aid recovery from Friday's global digital outage, which hit media, retailers, …

Hindustan Times

Cyber Crowdstrike Unofficial Code Malicious Websites

Elon Musk trolls Microsoft amidst global outage, invokes 2021 ‘macrohard’ post

8 months, 3 weeks ago

Elon Musk trolls Microsoft amidst global outage, invokes 2021 ‘macrohard’ post

Following a crucial server outage that Microsoft witnessed on Friday, Billionaire Elon Musk seized the opportunity to take a dig at an American multinational corporation and technology company. Elon Musk …

Hindustan Times

Microsoft Elon Musk Outage Microsoft Outage

Traders At Nuvama, 5paisa, Motilal Oswal Hit By Microsoft Cloud Outage; Know Details

8 months, 3 weeks ago

Traders At Nuvama, 5paisa, Motilal Oswal Hit By Microsoft Cloud Outage; Know Details

Dalal Street traders were among those hit by Microsoft‘s major service outage on Friday as technical glitches were reported at many brokerages. Brokerage firms 5paisa and IIFL Securities have told …

News 18

Microsoft Issue Crowdstrike Iifl Securities

WazirX hacked; halts withdrawals as over $230 million stolen

8 months, 3 weeks ago

WazirX hacked; halts withdrawals as over $230 million stolen

Indian cryptocurrency exchange WazirX claimed that it was “taking all necessary steps to protect the customer assets,” after a cyber-attack against one of its wallets resulted in the loss of …

India Crypto Indian Attack

Microsoft informs customers that Russian hackers spied on emails

9 months, 2 weeks ago

Microsoft informs customers that Russian hackers spied on emails

Russian hackers who broke into Microsoft's systems and spied on staff inboxes earlier this year also stole emails from its customers, the tech giant said on Thursday, around six months …

Microsoft Russian Customers

Microsoft ties cybersecurity to executive compensation after multiple security breaches

10 months ago

Microsoft ties cybersecurity to executive compensation after multiple security breaches

Microsoft will now be tying cybersecurity directly with executive bonuses, vice chair and President Brad Smith said on Thursday at a U.S. House committee hearing on the company’s security issues, …

Security Microsoft

Whistleblower: Microsoft chose profit over security, left US government vulnerable to Russian hack

10 months ago

Whistleblower: Microsoft chose profit over security, left US government vulnerable to Russian hack

ProPublica is a Pulitzer Prize-winning investigative newsroom. “The decisions are not based on what’s best for Microsoft’s customers but on what’s best for Microsoft,” said Harris, who now works for …

Salon

Security Cloud Computing Congress Attack

Hacker group puts data of 560 million Ticketmaster customers up for sale

10 months, 1 week ago

Hacker group puts data of 560 million Ticketmaster customers up for sale

Live Nation, Ticketmaster’s parent company, revealed in a Friday SEC filing to investors that hackers breached systems containing sensitive user data earlier in the month, and that it found that …

Salon

Data Sec Ticketmaster Snowflake Customers

Santander staff and customer data stolen in major cyber attack

10 months, 2 weeks ago

Santander staff and customer data stolen in major cyber attack

For free real time breaking news alerts sent straight to your inbox sign up to our breaking news emails Sign up to our free breaking news emails Sign up to …

The Independent

Data Customer Santander Ticketmaster

What we know about the 'remarkably devious' ShinyHunters hackers allegedly behind the Ticketmaster data leak

10 months, 2 weeks ago

What we know about the 'remarkably devious' ShinyHunters hackers allegedly behind the Ticketmaster data leak

In an online forum on the dark web, the hacker group ShinyHunters are right now spruiking what they say is 1.3 terabytes of Ticketmaster customer data. "While there allegedly are …

ABC

Data Information Million Cyber

The US Government Has a Microsoft Problem

11 months, 4 weeks ago

The US Government Has a Microsoft Problem

When Microsoft revealed in January that foreign government hackers had once again breached its systems, the news prompted another round of recriminations about the security posture of the world’s largest …

Wired

Security Russian Hackers Microsoft Problem

Government's CERT-In Issues 'Critical' Level Warning For Microsoft Windows 10, 11 & Office Users

1 year ago

Government's CERT-In Issues 'Critical' Level Warning For Microsoft Windows 10, 11 & Office Users

The Computer Emergency Response Team, a government organisation under the Ministry of Electronics and Information Technology that handles computer security incidents, has issued a warning for Microsoft users, especially the …

ABP News

Security Microsoft System Warning

Experts examine how hackers took down a top digital health care payment system

1 year ago

Experts examine how hackers took down a top digital health care payment system

Experts examine how hackers took down a top digital health care payment system Pharmacies have a backlog of insurance claims waiting to be paid after the payment system was hacked …

NPR

Health Cybersecurity Health Care Care

Scathing federal report rips Microsoft for shoddy security, insincerity in response to Chinese hack

1 year ago

Scathing federal report rips Microsoft for shoddy security, insincerity in response to Chinese hack

In a scathing indictment of Microsoft corporate security and transparency, a Biden administration-appointed review board issued a report Tuesday saying “a cascade of errors” by the tech giant let state-backed …

Security Board Microsoft Company

Scathing federal report rips Microsoft for shoddy security, insincerity in response to Chinese hack

1 year ago

Scathing federal report rips Microsoft for shoddy security, insincerity in response to Chinese hack

BOSTON — In a scathing indictment of Microsoft corporate security and transparency, a Biden administration-appointed review board issued a report Tuesday saying “a cascade of errors” by the tech giant …

Associated Press

Security Board Microsoft Company

Microsoft says it hasn’t been able to shake Russian state hackers

1 year, 1 month ago

Microsoft says it hasn’t been able to shake Russian state hackers

The latest headlines from our reporters across the US sent straight to your inbox each weekday Your briefing on the latest headlines from across the US Your briefing on the …

The Independent

Security Microsoft Latest Headlines Russian Hackers

Security News This Week: Russian Hackers Stole Microsoft Source Code—and the Attack Isn’t Over

1 year, 1 month ago

Security News This Week: Russian Hackers Stole Microsoft Source Code—and the Attack Isn’t Over

For years, Registered Agents Inc.—a secretive company whose business is setting up other businesses—has registered thousands of companies to people who appear to not exist. State attorneys general from around …

Wired

Attack Company Meta Nobelium

Microsoft says Russian hackers again trying to breach its systems

1 year, 1 month ago

Microsoft says Russian hackers again trying to breach its systems

Microsoft has said that Russian foreign intelligence-linked hackers again tried to break into its systems, using data stolen from corporate emails in January to access the tech giant whose products …

Hindustan Times

Security Microsoft Russian Hackers

Microsoft says it hasn’t been able to shake Russian state hackers

1 year, 1 month ago

Microsoft says it hasn’t been able to shake Russian state hackers

BOSTON — Microsoft said Friday it’s still trying to evict the elite Russian government hackers who broke into the email accounts of senior company executives in November and who it …

Associated Press

Security Microsoft Hackers Svr

2 men hacked Swiggy accounts, placed orders worth ₹1 lakh. What happened next?

1 year, 1 month ago

2 men hacked Swiggy accounts, placed orders worth ₹1 lakh. What happened next?

Delhi Police arrested two men, Aniket Kalra, 25, and Himanshu Kumar, 23, both residents of Gurugram, for allegedly hacking multiple Swiggy delivery accounts, reported Indian Express. The accused employed an …

Hindustan Times

Report Kumar Swiggy Accounts