Microsoft security intelligence – Page 2

2022 in review: DDoS attack trends and insights

February 21, 2023 0 Comments Azure, cybersecurity, DDoS, Microsoft, Microsoft security intelligence, Security

Credit to Author: Microsoft Security Threat Intelligence| Date: Tue, 21 Feb 2023 18:00:00 +0000

With DDoS attacks becoming more frequent, sophisticated, and inexpensive to launch, it’s important for organizations of all sizes to be proactive and stay protected. In this blog, we detail trends and insights into DDoS attacks we observed and mitigated throughout 2022.

The post 2022 in review: DDoS attack trends and insights appeared first on Microsoft Security Blog.

Microsoft Security

Introducing kernel sanitizers on Microsoft platforms

January 26, 2023 0 Comments cybersecurity, foundational security, kernel sanitizers, Microsoft security intelligence

Credit to Author: Microsoft Security Threat Intelligence – Editor| Date: Thu, 26 Jan 2023 17:00:00 +0000

We share technical details of our work on the AddressSanitizer (ASAN) and how it contributes to durably improving software quality and security at Microsoft.

The post Introducing kernel sanitizers on Microsoft platforms appeared first on Microsoft Security Blog.

Microsoft Security

Unraveling the techniques of Mac ransomware

January 5, 2023 0 Comments cybersecurity, MacOS, Microsoft security intelligence, Ransomware

Credit to Author: Microsoft Security Threat Intelligence – Editor| Date: Thu, 05 Jan 2023 17:00:00 +0000

Understanding how Mac ransomware works is critical in protecting today’s hybrid environments. We analyzed several known Mac ransomware families and highlighted these families’ techniques, which defenders can study further to prevent attacks.

The post Unraveling the techniques of Mac ransomware appeared first on Microsoft Security Blog.

Microsoft Security

Microsoft research uncovers new Zerobot capabilities

December 21, 2022 0 Comments cybersecurity, IoT, Microsoft security intelligence, zerobot

Credit to Author: Paul Oliveria| Date: Wed, 21 Dec 2022 20:00:00 +0000

The Microsoft Defender for IoT research team details information on the recent distribution of a Go-based botnet, known as Zerobot, that spreads primarily through IoT and web-application vulnerabilities.

The post Microsoft research uncovers new Zerobot capabilities appeared first on Microsoft Security Blog.

Microsoft Security

Gatekeeper’s Achilles heel: Unearthing a macOS vulnerability

December 19, 2022 0 Comments cybersecurity, MacOS, Microsoft, Microsoft security intelligence, Security, vulnerability

Credit to Author: Microsoft Security Threat Intelligence| Date: Mon, 19 Dec 2022 18:00:00 +0000

Microsoft discovered a vulnerability in macOS, referred to as “Achilles”, allowing attackers to bypass application execution restrictions enforced by the Gatekeeper security mechanism.

The post Gatekeeper’s Achilles heel: Unearthing a macOS vulnerability appeared first on Microsoft Security Blog.

Microsoft Security

MCCrash: Cross-platform DDoS botnet targets private Minecraft servers

December 15, 2022 0 Comments cybersecurity, iot security, Linux, Microsoft security intelligence

Credit to Author: Paul Oliveria| Date: Thu, 15 Dec 2022 18:00:00 +0000

The Microsoft Defender for IoT research team analyzed a cross-platform botnet that infects both Windows and Linux systems from PCs to IoT devices, to launch distributed denial of service (DDoS) attacks against private Minecraft servers.

The post MCCrash: Cross-platform DDoS botnet targets private Minecraft servers appeared first on Microsoft Security Blog.

Microsoft Security

IIS modules: The evolution of web shells and how to detect them

December 12, 2022 0 Comments cybersecurity, iis, microsoft detection and response team (dart), Microsoft security intelligence, web shell

Credit to Author: Microsoft Security Threat Intelligence – Editor| Date: Mon, 12 Dec 2022 17:00:00 +0000

This blog aims to provide further guidance on detecting malicious IIS modules and other capabilities that you can use during your own incident response investigations.

The post IIS modules: The evolution of web shells and how to detect them appeared first on Microsoft Security Blog.

Microsoft Security

DEV-0139 launches targeted attacks against the cryptocurrency industry

December 6, 2022 0 Comments cybersecurity, malware, Microsoft, Microsoft security intelligence, Security

Credit to Author: Katie McCafferty| Date: Tue, 06 Dec 2022 17:00:00 +0000

Microsoft security researchers investigate an attack where the threat actor, tracked DEV-0139, used chat groups to target specific cryptocurrency investment companies and run a backdoor within their network.

The post DEV-0139 launches targeted attacks against the cryptocurrency industry appeared first on Microsoft Security Blog.

Microsoft Security

Join us at InfoSec Jupyterthon 2022

November 22, 2022 0 Comments cybersecurity, Microsoft security intelligence, microsoft threat intelligence center (mstic)

Credit to Author: Microsoft 365 Defender Threat Intelligence Team| Date: Tue, 22 Nov 2022 18:00:00 +0000

Join our community of analysts and engineers at the third annual InfoSec Jupyterthon 2022, an online event taking place on December 2 and 3, 2022.

The post Join us at InfoSec Jupyterthon 2022 appeared first on Microsoft Security Blog.