资讯

WeLiveSecurity7 小时

GhostRedirector poisons Windows servers: Backdoors with a side of Potatoes

ESET researchers have identified a new threat actor targeting Windows servers with a passive C++ backdoor and a malicious IIS ...

Amazon disrupts Russian APT29 hackers targeting Microsoft 365

Researchers have disrupted an operation attributed to Russian state-sponsored threat group Midnight Blizzard, who sought access to Microsoft 365 accounts and data.
The Hacker News6 天

Amazon Disrupts APT29 Watering Hole Campaign Abusing Microsoft Device Code Authentication

Amazon disrupted APT29’s June 2025 campaign exploiting Microsoft device code authentication, redirecting 10% of visitors to ...
SecurityWeek2 天

Amazon Disrupts Russian Hacking Campaign Targeting Microsoft Users

AWS disrupted a Russian watering hole campaign targeting Microsoft users via compromised websites redirecting users to malicious infrastructure.

AWS catches Russia's Cozy Bear clawing at Microsoft credentials

APT29, also known as Cozy Bear and Midnght Blizzard, is probably best known for the 2020 SolarWinds hack, and has been widely linked to Russia's Foreign Intelligence Service (SVR) by the US, UK, and ...
Infosecurity Magazine3 天

Amazon Stops Russian APT29 Watering Hole Attack Exploiting Microsoft Auth

The campaign shows APT29’s intentions to “cast a wider net in their intelligence collection efforts,” said Amazon ...