Microsoft Security Blog Expert coverage of cybersecurity topics
- North Korean threat actor Citrine Sleet exploiting Chromium zero-dayby Microsoft Threat Intelligence and Microsoft Security Response Center (MSRC) on 30 August 2024 at 4:00 pm
Microsoft identified a North Korean threat actor exploiting a zero-day vulnerability in Chromium (CVE-2024-7971) to gain remote code execution (RCE) in the Chromium renderer process. Our assessment of ongoing analysis and observed infrastructure attributes this activity to Citrine Sleet, a North Korean threat actor that commonly targets the cryptocurrency sector for financial gain. The post North Korean threat actor Citrine Sleet exploiting Chromium zero-day appeared first on Microsoft Security Blog.
- The art and science behind Microsoft threat hunting: Part 3by Microsoft Incident Response on 28 August 2024 at 7:00 pm
In this blog post, read how Microsoft Incident Response leverages three types of threat intelligence to enhance incident response scenarios. The post The art and science behind Microsoft threat hunting: Part 3 appeared first on Microsoft Security Blog.
- Peach Sandstorm deploys new custom Tickler malware in long-running intelligence gathering operationsby Microsoft Threat Intelligence on 28 August 2024 at 3:00 pm
Between April and July 2024, Microsoft observed Iranian state-sponsored threat actor Peach Sandstorm deploying a new custom multi-stage backdoor, which we named Tickler. Tickler has been used in attacks against targets in the satellite, communications equipment, oil and gas, as well as federal and state government sectors in the United States and the United Arab The post Peach Sandstorm deploys new custom Tickler malware in long-running intelligence gathering operations appeared first on Microsoft Security Blog.
- How Microsoft Entra ID supports US government agencies in meeting identity security requirementsby Joy Chik on 26 August 2024 at 4:00 pm
United States Government agencies are adopting Microsoft Entra ID to consolidate siloed identity solutions, reduce operational complexity, and improve control and visibility across all users. The post How Microsoft Entra ID supports US government agencies in meeting identity security requirements appeared first on Microsoft Security Blog.
- Microsoft AI Tour: Hear the latest product innovations to elevate your security strategyby Jessica Afeku on 22 August 2024 at 4:00 pm
The Microsoft AI Tour is coming to a city near you. Join a free, one-day tour event to learn how we are making AI deployment more secure. The post Microsoft AI Tour: Hear the latest product innovations to elevate your security strategy appeared first on Microsoft Security Blog.