Windows TCO leftovers
-
Microsoft puts out Outlook fire, says everything’s fine with Teams malware flaw
Microsoft is having a rough week with troubles including an Outlook.com bug that prevented some email users from searching their messages for several hours on Thursday, and a Teams flaw that allows people to send phishing emails and malware to other Teams users.
-
Microsoft puts out Outlook fire, says everything's fine with Teams malware flaw
Developed by a US Army red teamer called Octoberfest7, TeamsPhisher is a Python-based automated attack that lets users send phishing messages with malicious attachments to external Teams users.
It builds on earlier work including research published by Jumpsec red teamers Max Corbridge and Tom Ellson last month. The two found a weakness in the latest version of Teams that can be exploited to bypass security controls and send files — specifically malware — to any organization that uses Teams.
-
Why ransomware groups are targeting Indian pharma companies and the healthcare sector; ClearMedi allegedly hacked
The current news involving India is even worse than Ms Tripathi may know. Threat actors called 8Base have listed ClearMedi Health” on their leak site and Telegram channel. “We have a large number of files. For demonstration, some of them are presented here. The entire amount of data has already been uploaded to the site, enjoy!”, they wrote.
-
Why ransomware groups are targeting pharma companies and the healthcare sector
The Russia-linked ransomware group LockBit has claimed accountability for the cyberattack and published portions of the data it allegedly stole. LockBit’s dark web leak site has leaked 50 percent of the data, and the rest is up for sale.
"Granules India is a company that does not know what cybersecurity and data protection are. During the pen test [penetration test] of its corporate network, we found more than 10 critical vulnerabilities that allowed access to its private data. Moreover, this company refused to protect the data of its employees, customers, partners, and investors in a case where it could and should have done so," said a note put out by the ransomware group on the dark web.