Silk Typhoon shifted to specifically targeting IT management companies
The Chinese state-backed espionage group started targeting third-party IT services in late 2024, Microsoft researchers said.
Advertisement
Showing 10 of 1023 results
-
(Getty) Cybercrime -
Rep. Nancy Mace, R-S.C., speaks during a hearing with the House Oversight and Accountability committee in the Rayburn House Office Building on April 11, 2024 in Washington, D.C. (Photo by Anna Moneymaker/Getty Images) Government House passes bill requiring federal contractors to have vulnerability disclosure policies
The legislation to make contractors implement VDPs aligned with NIST guidelines is aimed at protecting Americans’ data, co-sponsor Rep. Nancy Mace says.
-
(Photo by Horacio Villalobos#Corbis/Corbis via Getty Images) AI Microsoft IDs developers behind alleged generative AI hacking-for-hire scheme
An amended complaint identifies a number of overseas individuals as key players “at the center of a global cybercrime network” that sold access to jailbroken generative AI tools.
-
Cybersecurity Microsoft’s Ian Leatherman on how AI boosts government zero-trust efforts
Ian Leatherman | Zero Trust Strategist, Security Solutions Group | Microsoft
-
Troy Edgar, left, nominee to be the next deputy secretary of Homeland Security, testifies before the Senate Homeland Security and Governmental Affairs Committee on Feb. 25, 2025 in Washington, D.C. (Photo by Chip Somodevilla/Getty Images) Policy Purging cyber review board was ‘a great idea,’ DHS deputy secretary nominee says
Troy Edgar told lawmakers that the Cyber Safety Review Board, which was investigating the Salt Typhoon hack, was “going in the wrong direction.”
-
(getty) Ransomware What defenders are learning from Black Basta’s leaked chat logs
The ransomware syndicate’s internal chats exposed a wide swath of the group’s inner workings.
-
(Photo by John Smith/VIEWpress/Getty Images) Threats Threat researchers spot ‘device code’ phishing attacks targeting Microsoft accounts
Suspected Russian nation-state threat groups have duped multiple victims into granting potentially persistent access to networks via authentication requests and valid tokens.
-
Cars drive past the headquarters of the Russian General Staff’s Main Intelligence Department (GRU) in Moscow on December 30, 2016. (Photo by NATALIA KOLESNIKOVA/AFP via Getty Images) Uncategorized Russian state threat group shifts focus to US, UK targets
A subgroup of Seashell Blizzard exploited public vulnerabilities in internet-facing systems, Microsoft researchers said.
-
The Microsoft logo is visible through a grid of its French headquarters on Jan. 25, 2023 in Issy-les-Moulineaux. (Photo by Chesnot/Getty Images) Cybersecurity Microsoft fixes 63 vulnerabilities, including 2 zero-days
The company’s monthly Patch Tuesday update comes with more than two-thirds of the patches closing high-severity flaws.
-
(Getty Images) Threats Infosec pros: We need CVSS, warts and all
The Common Vulnerability Scoring System has a lot of critics, but experts say it’s still the best unified way to share the severity of cybersecurity flaws.