Microsoft Patches 'Dangerous' RCE Flaw in Azure Cloud Service

The vulnerability would have allowed an unauthenticated attacker to execute code on a container hosted on one of the platform's nodes.

https://www.darkreading.com/cloud/micros...ice-fabric

BEC Fraudsters Expand to Snatch Real-World Goods in Commodities Twist

Business email compromise scams are moving beyond just stealing cash, with some threat actors fooling companies into sending goods and materials on credit, and then skipping out on payment.

https://www.darkreading.com/threat-intel...ties-twist

Microsoft Rolls Out Security Copilot For Swift Incident Response

The Redmond-based tech giant goes a step ahead in the AI race by utilizing AI’s…

Microsoft Rolls Out Security Copilot For Swift Incident Response on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Courses.

6 Malware Removal Tips for Mac

As secure as Apple devices are, unfortunately, there’s no guaranteed way to ensure that they…

6 Malware Removal Tips for Mac on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Courses.

Can AWS Be Hacked? What You Need to Know

Amazon Web Services dominates the cloud computing sector and hosts crucial data for businesses of…

Can AWS Be Hacked? What You Need to Know on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Courses.

Hackers compromise 3CX desktop app in a supply chain attack


A digitally signed and trojanized version of the 3CX Voice Over Internet Protocol (VOIP) desktop client is reportedly being used to target the company's customers in an ongoing supply chain attack. [...]


https://www.bleepingcomputer.com/news/se...in-attack/

New AlienFox toolkit steals credentials for 18 cloud services


A new modular toolkit called 'AlienFox' allows threat actors to scan for misconfigured servers to steal authentication secrets and credentials for cloud-based email services. [...]


https://www.bleepingcomputer.com/news/se...-services/

Bing search results hijacked via misconfigured Microsoft app


A misconfigured Microsoft application allowed anyone to log in and modify Bing.com search results in real-time, as well as inject XSS attacks to potentially breach the accounts of Office 365 users. [...]


https://www.bleepingcomputer.com/news/se...osoft-app/

Microsoft testing adaptive brightness on more Windows 11 devices


Microsoft says the new Windows 11 preview build rolling out today will allow Insiders to test the company's adaptive brightness feature on more systems. [...]


https://www.bleepingcomputer.com/news/mi...1-devices/

Realtek and Cacti flaws now actively exploited by malware botnets


Multiple malware botnets actively target Cacti and Realtek vulnerabilities in campaigns detected between January and March 2023, spreading ShellBot and Moobot malware. [...]


https://www.bleepingcomputer.com/news/se...e-botnets/