Mitigation Trial To Combat New MS Exchange Server Vuln

STEALTHbits Technologies announced mitigation capabilities for a recently-discovered* Microsoft Exchange privilege escalation attack that lets any user become a Domain Admin. STEALTHbits is making the capabilities available as a free trial for 30 days upon registration and request. The attack method was detailed in the January 24, 2019 post Abusing Exchange: One API call away […]

Phishers Target Anti-Money Laundering Officers At U.S. Credit Unions

This morning noted security blogger Brian Krebs reported on a highly targeted, malware-laced phishing campaign landed in the inboxes of multiple credit unions last week. The missives are raising eyebrows because they were sent only to specific anti-money laundering contacts at the CUs. A highly targeted, malware-laced phishing attack hit credit unions across the nation […]

Mumsnet Data Leak

Mumsnet, has experienced a data leak. Users logging into their accounts were given access to other users’ details, with account information being “switched”. It appears this happened while Mumsnet was migrating services to the cloud. Parenting site Mumsnet hit by data breach — CRISP (@CrispSurv) February 10, 2019 Experts Comments below:  Stephen Gailey, Solutions […]