FBI Accesses Computers Around Country to Delete Microsoft Exchange Hacks

Hacking. Disinformation. Surveillance. CYBER is Motherboard's podcast and reporting on the dark underbelly of the internet. Did you receive a notification from the FBI about this? We'd love to hear from you. Using a non-work phone or computer, you can contact Joseph Cox securely on Signal on +44 20 8133 5190, Wickr on josephcox, OTR chat on jfcox@jabber.ccc.de , or email joseph.cox@vice.com .


Justice Department announces court-authorized effort to disrupt exploitation of Microsoft Exchange Server vulnerabilities

HOUSTON - Authorities have executed a court-authorized operation to copy and remove malicious web shells from hundreds of vulnerable computers in the United States. They were running on-premises versions of Microsoft Exchange Server software used to provide enterprise-level email service.


MS Patch Tuesday: NSA Reports New Critical Exchange Flaws | SecurityWeek.Com

Just weeks after a wave of major in-the-wild zero-day attacks against Exchange Server installations globally, Microsoft is raising a fresh alarm for four new critical security flaws that expose businesses to remote code execution attacks. The four new Exchange Server vulnerabilities were fixed as part of this month's Patch Tuesday bundle and because of the severity of these issues, Microsoft has joined with the U.S.


Meet the Ransomware Gang Behind One of the Biggest Supply Chain Hacks Ever

Image: Michelle Urra/Motherboard A gang nicknamed Cl0p, FIN11, and TA505 has been hacking and extorting hundreds of companies for years. Hacking. Disinformation. Surveillance. CYBER is Motherboard's podcast and reporting on the dark underbelly of the internet. Kat Garcia is a cybersecurity researcher at Emsisoft, where, as part of her work, she tracks a ransomware gang called Cl0p.


Amid a Wave of Hacks, Biden Moves to Fill Key Cyber Posts

WASHINGTON-President Biden intends to nominate two former National Security Agency officials to high-level cybersecurity positions, the White House said Monday, rounding out the administration's personnel on an issue it has said is a priority in the wake of two recent hacks linked to foreign governments.


Top Kremlin Mouthpiece Warns of 'Inevitable' War With U.S.

All-out cyberwarfare, nation-wide forced blackouts, and the targeted disruption of internet services-for one of the Kremlin's top propagandists, all of those tactics are fair game in what she describes as a fated war-to-come against the U.S. "War [with the U.S.]

The Daily Beast

Pwn2own partial payout - do the rules still make sense? - Bug Bounties & VDPs

Saturday, April 10 at 12:30pm PDT with Katie Moussouris. A history making hack was initially not offered a prize, on the grounds there was a bug collision (with a privately disclosed bug not in the contest). Discussion of right vs rules in pwning events.


Microsoft: Malware gang uses website contact forms for distribution | The Record by Recorded Future

Microsoft said today it spotted a cybercrime operation abusing contact forms on legitimate websites to target companies and their workers in attempts to infect them with the IcedID malware. One of Microsoft's security teams highlighted the creativity and effectiveness of this campaign, which is currently seeing a spike in activity.

The Record by Recorded Future

How to raise the cybersecurity poverty line and make companies more secure

The cybersecurity poverty line is a term that can help companies understand security gaps and build better awareness. Learn more about it and how it applies to your organization. As a system administrator, cybersecurity has been especially prominent on my mind for the past year as my organization has exclusively engaged in remote work.


Zero Day Initiative - The April 2021 Security Update Review

It's the second Tuesday of the month, which means the latest security updates from Adobe and Microsoft are released. Take a break from your regularly scheduled activities and join us as we review the details for their latest security offerings. Adobe Patches for April 2021 For April, Adobe rele

Zero Day Initiative