Автор: Jai Vijayan, Contributing Writer

The nation-state threat group has been breaching providers of remote management tools, identity management providers, and other IT companies to access networks of targeted entities, according to Microsoft.

The nation-state threat group has been breaching providers of remote management tools, identity management providers, and other IT companies to access networks of targeted entities, according to Microsoft.

The now-patched bugs are under active exploit and enable attackers to carry out a wide range of malicious activities, including escaping a virtual machine and gaining access to the underlying host.

Media reports over the weekend suggested the Trump Administration ordered US Cyber Command and CISA to draw down cyber activities targeting Russia.

Media reports over the weekend suggested the Trump Administration ordered US Cyber Command and CISA to draw down cyber activities targeting Russia.

The vendor’s products fall in a category that ransomware operators like to target to circumvent victims’ ability to recover from a successful attack.

In the wrong hands, the popular red-teaming tool can be made to access networks, escalate privileges, conduct reconnaissance, and disguise malicious activity as a simulated exercise.

A patch bypass for a bug in the popular desktop emulator enables root-level privilege escalation and has no fix in sight.

Evolving threats and hybrid identity challenges keep Microsoft’s Active Directory at risk.

These sorts of attacks reveal growing adversary interest in secure messaging apps used by high-value targets for communication, Google says.