Defending new vectors: Threat actors attempt SQL Server to cloud lateral movement | Microsoft Security Blog

2023/10/06 5 users Movement

Microsoft security researchers recently identified a campaign where attackers attempted to move laterally to a cloud environment through a SQL Server instance. This attack technique demonstrates an approach we’ve seen in other cloud services such as VMs and Kubernetes cluster, but not in SQL Serv... 続きを読む

多要素認証(MFA)を回避するサイバー攻撃が流行、Microsoftが警告

2022/11/25 10 users MFA theft Microsoft 警告 トークン

Microsoftはこのほど、「Token tactics: How to prevent, detect, and respond to cloud token theft - Microsoft Security Blog」において、認証に用いられるトークンの盗難が急増していると伝えた。組織が多要素認証(MFA: Multi-Factor Authentication)の適用範囲を拡大するにつれ、サイバー攻撃者は企業のリソースを... 続きを読む

New macOS vulnerability, “powerdir,” could lead to unauthorized user data access - Microsoft Security Blog

2022/01/11 5 users vulnerability consent tcc

Following our discovery of the “Shrootless” vulnerability, Microsoft uncovered a new macOS vulnerability, “powerdir,” that could allow an attacker to bypass the operating system’s Transparency, Consent, and Control (TCC) technology, thereby gaining unauthorized access to a user’s protected data. ... 続きを読む