The "TeamsPhisher" cyberattack tool gives pen testers — and adversaries — a way to deliver malicious files directly to a Teams user from an external account, or tenant.
| | | LATEST SECURITY NEWS & COMMENTARY | | Microsoft Teams Exploit Tool Auto-Delivers Malware The "TeamsPhisher" cyberattack tool gives pen testers — and adversaries — a way to deliver malicious files directly to a Teams user from an external account, or tenant. Researchers Develop Exploit Code for Critical Fortinet VPN Bug Some 340,000 FortiGate SSL VPN appliances remain exposed to the threat more than three weeks after Fortinet released firmware updates to address the issue. Cl0p's MOVEit Campaign Represents a New Era in Cyberattacks The ransomware group shows an evolution of its tactics with MOVEit zero-day — potentially ushering in a new normal when it comes to extortion supply chain cyberattacks, experts say. Chip Giant TSMC Blames $70M LockBit Breach on IT Hardware Supplier The group has given one of Apple's biggest semiconductor suppliers until Aug. 6 to pay $70 million or risk having its data and "points of entry" to its network publicly leaked. Researchers Detail 4 SAP Bugs, Including Flaw in ABAP Kernel Patches are available for three bugs, but with technical details and PoCs now available, threat actors can craft targeted attacks. Ransomware Halts Operations at Japan's Port of Nagoya LockBit 3.0 claims responsibility for the cyberattack that shuttered the largest port in Japan, according to authorities. Russian Satellite Internet Downed via Attackers Claiming Ties to Wagner Group Attribution for the cyberattack on Dozor-Teleport remains murky, but the effects are real — downed communications and compromised data. Microsoft Can Fix Ransomware Tomorrow You can't encrypt a file you can't open — Microsoft could dramatically impact ransomware by slowing it down. A CISO's Guide to Paying Down Software Supply Chain Security Debt When you just keep filing it away to handle "someday," security debt typically rears its head when you are most vulnerable and can least afford to pay it. When It Comes to Secure Coding, ChatGPT Is Quintessentially Human We're still unprepared to fight the security bugs we already encounter, let alone new AI-borne issues. A Golden Age of AI … or Security Threats? Now is the time to build safeguards into nascent AI technology. Name That Edge Toon: Three-Ring Circus Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card. MORE NEWS / MORE COMMENTARY | | |
|
Dark Reading Weekly
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
| | To opt-out of any future Dark Reading Weekly Newsletter emails, please respond here. | | Thoughts about this newsletter? Give us feedback. |
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: | | If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. | | We take your privacy very seriously. Please review our Privacy Statement. |
|
| |
