Microsoft Office 365 Uses Broken Email Encryption to Secure Messages

The Hacker News Daily Updates Get Inside a Hacker's Mind Emulate sophisticated hacker strategies to uncover vulnerabilities and generate remediation insight. Download Now Sponsored LATEST NEWS Oct 17, 2022 Black Basta Ransomware Hackers Infiltrates Networks via Qakbot to Deploy Brute Ratel C4 The threat actors behind the Black Basta ransomware family have been observed using the Qakbot trojan to deploy the Brute Ratel C4 framework as a second-stage payload in recent attacks. The development marks the first time the nascent adversary simulation software is being delivered via a Qakbot ... Read More Researchers Say Microsoft Office 365 Uses Broken Email Encryption to Secure Messages New research has disclosed what's being called a security vulnerability in Microsoft 365 that could be exploited to infer message contents due to the use of a broken cryptographic algorithm. "The [Office 365 Message Encryption] messages are encrypted in insecure Electronic Codebook (ECB) mode of ... Read More Why Crypto Winter is No Excuse to Let Your Cyber Defenses Falter Don't let the ongoing "crypto winter" lull you into a false sense of cybersecurity. Even as cryptocurrencies lose value — and some crypto companies file for bankruptcy — cryptojacking still poses an urgent threat to enterprises across industries, from financial services to healthcare to industry ... Read More New Prestige Ransomware Targeting Polish and Ukrainian Organizations A new ransomware campaign targeted the transportation and logistics sectors in Ukraine and Poland on October 11 with a previously unknown payload dubbed Prestige. "The activity shares victimology with recent Russian state-aligned activity, specifically on affected geographies and countries, and ... Read More Zimbra Releases Patch for Actively Exploited Vulnerability in its Collaboration Suite Zimbra has released patches to contain an actively exploited security flaw in its enterprise collaboration suite that could be leveraged to upload arbitrary files to vulnerable instances. Tracked as CVE-2022-41352 (CVSS score: 9.8), the issue affects a component of the Zimbra suite called Amavis, ... Read More Get Inside a Hacker's Mind Emulate sophisticated hacker strategies to uncover vulnerabilities and generate remediation insight. Download Now Sponsored This email was sent to myemailku.ghdbrevo2018@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please click here. Contact The Hacker News: info@thehackernews.com Unsubscribe The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India