Specops Password Policy software enforces stronger password policies and blocks compromised passwords, reducing the risk of unauthorized access and potential compromises in Active Directory environments.
The ToddyCat group, an advanced persistent threat (APT) based in China, has been actively targeting telecommunications organizations in Central and Southeast Asia since at least 2020, utilizing spear phishing emails and unique malware samples.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has identified a high-severity vulnerability in Adobe Acrobat Reader that allows attackers to remotely execute malicious code, with certain versions of the software being actively exploited.
Primary and secondary schools in the education sector are highly vulnerable to cyberattacks, with exploitation and phishing campaigns being the most common types of attacks, according to a report by Critical Start.
Microsoft’s October 2023 security update round resolves 104 security issues, including three zero-day vulnerabilities that were actively exploited, with one vulnerability potentially leaking NTLM hashes and another allowing access to systems on internal networks.
Chinese state-backed hackers known as Storm-0062 or DarkShadow have been identified by Microsoft as the entity behind zero-day exploits targeting Atlassian’s Confluence Data Center and Server products.
