Microsoft peringatkan eksploitasi pengaturan ulang kata sandi oleh peretas

Microsoft telah memperingatkan pengguna bahwa peretas sedang menargetkan proses pengaturan ulang kata sandi untuk membobol akun. Aktivitas ini dikaitkan dengan kelompok Storm-2949.

Microsoft mengeluarkan peringatan mengenai upaya berkelanjutan untuk mengeksploitasi pengaturan ulang kata sandi demi mendapatkan akses tidak sah. Peretas yang terlibat digambarkan menjalankan kampanye yang metodis, canggih, dan berlapis di bawah nama Storm-2949.

Artikel Terkait

Illustration of a hacker exploiting Meta's AI chatbot to hijack Instagram accounts by changing email addresses and bypassing security.
Gambar dihasilkan oleh AI

Meta patches ai chatbot flaw used to hijack instagram accounts

Dilaporkan oleh AI Gambar dihasilkan oleh AI

Hackers exploited Meta's AI support chatbot to take over Instagram accounts by tricking it into changing associated email addresses. The vulnerability allowed password resets without two-factor authentication after matching locations via VPN. Meta resolved the issue with an emergency patch on May 29.

Seventy-three Microsoft open source packages were compromised late last week with malware that steals credentials from cloud services and developer tools. The malicious code activates when opened in AI coding agents.

Dilaporkan oleh AI

Security specialists have raised alarms over the vulnerability of online accounts, stating that almost half of all passwords in use today can be broken within minutes.

The US State Department is offering a reward of up to $10 million for information on two Russian state-linked cyber groups behind a phishing campaign targeting Signal and WhatsApp accounts. The operation has compromised thousands of accounts since at least March.

Dilaporkan oleh AI

Security researcher Alexander Hagenah has released an updated tool called TotalRecall Reloaded that reveals weaknesses in Microsoft Windows 11's Recall feature. Despite Microsoft's security overhauls, the tool can intercept user data after Windows Hello authentication without needing administrator privileges. Microsoft maintains that this does not represent a vulnerability.

Situs web ini menggunakan cookie

Kami menggunakan cookie untuk analisis guna meningkatkan situs kami. Baca kebijakan privasi kami untuk informasi lebih lanjut.
Tolak