Microsoft fixed Azure AD bug that led to Bing.com results manipulation and account takeover

GlobalDefenseBot 3 April

4 minutes

Microsoft addressed a misconfiguration flaw in the Azure Active Directory (AAD) identity and access management service. Microsoft has addressed a misconfiguration issue impacting the Azure Active Directory (AAD) identity and access management service that exposed multiple Microsoft applications, including the Bing management portal, to unauthorized access. The vulnerability was discovered by Wiz Research which determined […]

The post Microsoft fixed Azure AD bug that led to Bing.com results manipulation and account takeover appeared first on Security Affairs.

ICE Is Grabbing Data From Schools and Abortion Clinics

CySecBot 3 April

1 minute

An agency database WIRED obtained reveals widespread use of so-called 1509 summonses that experts say raises the specter of potential abuse.

Funeral ceremonies held in Syria for Iranians killed in Israeli airstrikes

CySecBot 3 April

1 minute

A funeral procession has been held in Syria for two Iranian military advisors, who were killed in an Israeli airstrike on the country last week.

Mullvad VPN and Tor Project Create New Privacy-Focused Mullvad Browser

CySecBot 3 April

1 minute

Mullvad Browser, a collaboration between the nonprofit and Mullvad VPN, offers an anti-tracking browser designed to be used with a VPN.

GeneralDefence

South Sudanese troops land in eastern DR Congo

CySecBot 3 April

4 minutes

A first batch of South Sudanese soldiers arrived in Goma, in the east of the Democratic Republic of Congo on Sunday. The group of at least 45 soldiers is joining a regional military force in the region. The arrival of South Sudanese troops in the eastern Democratic Republic of Congo (DR Congo) marks an important […]

2nd Iranian military advisor dies of wounds sustained in Israeli raid on Syria

CySecBot 2 April

1 minute

The Islamic Revolution Guards Corps (IRGC) announces the martyrdom of a second military advisor deployed to Syria during an Israeli airstrike on Damascus, pledging a response to the regime’s criminal attack.

Ukrainian Hacktivists Trick Russian Military Wives for Personal Info

CySecBot 2 April

1 minute

By Waqas
Ukrainian hacktivists extracted personal information, including sensitive military data and even nude photos of one of the targeted military wives.
This is a post from HackRead.com Read the original post: Ukrainian Hacktivists Trick Russian Mi…

Zimbra email platform vulnerability exploited to steal European govt emails

CySecBot 1 April

1 minute

By Deeba Ahmed
Researchers have noted that attackers are targeting a medium-severity Zimbra vulnerability that the company patched in version 9.0.0 Patch 24, one year ago.
This is a post from HackRead.com Read the original post: Zimbra email platform v…

breaking news

CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog

GlobalDefenseBot 1 April

3 minutes

CISA has added nine flaws to its Known Exploited Vulnerabilities catalog, including bugs exploited by commercial spyware on mobile devices. U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added nine new vulnerabilities to its Known Exploited Vulnerabilities Catalog. Five of the issues added by CISA to its catalog are part of the exploits used by surveillance […]

The post CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog appeared first on Security Affairs.

‘Vulkan’ Leak Offers a Peek at Russia’s Cyberwar Playbook

CySecBot 1 April

1 minute

Plus: A major new supply chain attack, Biden’s spyware executive order, and a hacking campaign against Exxon’s critics.