US Department of the Interior’s passwords “easily cracked”

Categories: News

Tags: US department of the interior

Tags: password

Tags: hashes

Tags: cracking

Tags: requirements

Tags: MFA

A recent audit cracked 21 percent of the department’s passwords.

(Read more…)

The post US Department of the Interior’s passwords “easily cracked” appeared first on Malwarebytes Labs.

Read more

Exchange servers abused for spam through malicious OAuth applications

Categories: News

Tags: Exchange

Tags: OAuth

Tags: spam

Tags: MFA

Tags: Transport rules

Tags: connector

Threat actors have been using malicious OAuth applications to abuse Microsoft Exchange servers for their spam campaign.

(Read more…)

The post Exchange servers abused for spam through malicious OAuth applications appeared first on Malwarebytes Labs.

Read more

Microsoft will disable Basic authentication for Exchange Online in less than a month

Categories: News

Tags: Basic Auth

Tags: Exchange online

Tags: modern authentication

Tags: MFA

Tags: SAML

Tags: CBA

Tags: smart card

Tags: OAuth

The end of Basic authentication for Exchange Online is almost upon us. Are you ready?

(Read more…)

The post Microsoft will disable Basic authentication for Exchange Online in less than a month appeared first on Malwarebytes Labs.

Read more

Source code of password manager LastPass stolen by attacker

Categories: News

Tags: LastPass

Tags: source code

Tags: MFA

Tags: random

Tags: password manager

LastPass let the public know that an unauthorized party gained access to portions of the LastPass development environment

(Read more…)

The post Source code of password manager LastPass stolen by attacker appeared first on Malwarebytes Labs.

Read more

CISA and FBI issue alert about Zeppelin ransomware

Categories: News

Categories: Ransomware

Tags: Zeppelin

Tags: ransomware

Tags: RDP

Tags: Sonicwall

Tags: phishing

Tags: malvertising

Tags: backups

Tags: authentication

Tags: mfa

Tags: patching

Tags: EDR

The FBI and CISA have issued a joint Cybersecurity Advisory (CSA) to raise awareness about Zeppelin ransomware

(Read more…)

The post CISA and FBI issue alert about Zeppelin ransomware appeared first on Malwarebytes Labs.

Read more

Karakurt extortion group: Threat profile

Credit to Author: Jovi Umawing| Date: Tue, 14 Jun 2022 16:00:29 +0000

An obscure group called Karakurt has extorted organizations in the US and elsewhere. Know how to keep it away from your network.

The post Karakurt extortion group: Threat profile appeared first on Malwarebytes Labs.

Read more

Internet Safety Month: Avoiding the consequences of unsafe Internet practices

Credit to Author: David Ruiz| Date: Fri, 03 Jun 2022 14:22:33 +0000

This Internet Safety Month, learn about the consequences of unsafe Internet practices, and how to avoid them.

The post Internet Safety Month: Avoiding the consequences of unsafe Internet practices appeared first on Malwarebytes Labs.

Read more