Autodesk representatives notified the US Securities and Exchange Commission that they also suffered from large-scale supply chain attack and hack of SolarWinds.

It turned out that one of the company’s servers was infected with Sunburst malware.

We identified a compromised SolarWinds server and took immediate steps to contain and eliminate the threat. While we believe that Autodesk’s customer operations and products were not affected by this attack, other similar attacks could have a significant negative impact on our systems and operations.the company said in a statement.

An Autodesk spokesman told Bleeping Computer that the attackers did not deploy any malware on [...]

Microsoft discovered new attacks by the Nobelium hack group that is responsible for the high-profile SolarWinds hack last year, one of the victims was Microsoft customer support employee.

Let me remind you that the SolarWinds hack has become one of the largest attacks on the supply chain in history. In December 2020, it became known that unknown attackers had attacked the company and infected its Orion platform with malware. Of the 300,000 SolarWinds customers, only 33,000 were using Orion, and at the beginning of the year, it was reported that an infected version of the platform was installed on approximately 18,000 customers, according to official figures.

As a result of [...]

Last week, representatives of the Texas-based company SolarWinds, which in 2020 suffered from a massive attack on the supply chain, filed documents with the US Securities and Exchange Commission.

The statement said that based on new information that emerged during the investigation of the attack (in particular, the DNS traffic logs), it became clear that the incident affected not 18,000 clients, as previously thought, but only about 100.

Let me remind you that the SolarWinds hack has become one of the largest attacks on the supply chain in history. In December 2020, it became known that unknown attackers had attacked the company and infected its Orion platform with malware. Of [...]

If you use the Windows 10 operating system together with the built-in Microsoft Defender antivirus, you may encounter a bug that creates thousands of service files.

On affected devices, Microsoft Defender places thousands of files in the directory: C:\ProgramData\Microsoft\Windows Defender\Scans\History\Store

For example, on a test system running Windows 10, version 20H2, there were more than 10,800 objects in this folder. Other users report that in just 24 hours, Microsoft Defender created over 950,000 files, taking up over 30 gigabytes of disk space. Most files are small: 1 or 2 kilobytes.

The error can affect certain operations, such as sync or backup jobs. [...]

According to Bloomberg, more than 60 thousand organizations worldwide have been hacked due to exploitation of vulnerabilities in Microsoft Exchange (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858 and CVE-2021-27065).

Microsoft discovered a hacker group known as Hafnium that carried out attacks using zero-day vulnerabilities in Microsoft Exchange servers.

To carry out the attack, the cybercriminals needed access to the local Microsoft Exchange server through port 443. If access was obtained, the attackers exploited the following vulnerabilities to gain remote access:

CVE-2021-26855 is a Server Side Request Forgery (SSRF) vulnerability in Exchange that allows an attacker to [...]

This week, cybersecurity experts from Microsoft and FireEye published new reports and found three more malware that attacked SolarWinds and its customers.

Last year, it became known that SolarWinds, which develops software for enterprises to help manage their networks, systems and infrastructure, has been compromised. This attack on the supply chain has been attributed to a supposedly Russian-speaking hack group that cybersecurity experts track under the names StellarParticle (CrowdStrike), UNC2452 (FireEye) and Dark Halo (Volexity).

After infiltrating the SolarWinds network, the attackers provided Orion’s centralized monitoring and control platform with a malicious [...]

On the first “Update Tuesday” in 2021, Microsoft patched the 0-day vulnerability in Defender, one among 83 vulnerabilities in the company’s products, 10 of which were classified as critical.

Various patches have been released for Windows, Edge Browser, Microsoft Office and Microsoft Office Services and Web Apps, Microsoft Windows Codecs Library, Visual Studio, SQL Server, Microsoft Malware Protection Engine, .NET Core, .NET Repository, ASP .NET, and Azure.

The biggest issue this month is undoubtedly a zero-day vulnerability in Microsoft Defender antivirus that hackers have already exploited. This bug was identified as CVE-2021-1647 and is described as an RCE [...]

Arrived new details of the SolarWinds hack, recent compromise of which has led to serious consequences. Let me remind you that unknown malefactors attacked SolarWinds and infected its Orion platform with malware.

Among the victims were such giants as Microsoft, Cisco, FireEye, as well as many US government agencies, including the State Department and the National Nuclear Security Administration.

Let me remind you that cybersecurity experts compile lists of companies affected by the SolarWinds hack.

In early January, representatives of the US Department of Justice confirmed that the Department of Justice was also affected by the SolarWinds hack. What is worse, the agency [...]

In mid-December 2020, Microsoft notified CrowdStrike that a compromised unnamed Microsoft Azure reseller account was being used for reading CrowdStrike emails. In order to prevent such actions in the future and to enable company administrators to analyse access rights to Microsoft Azure themselves, CrowdStrike has released its own free CrowdStrike Reporting Tool for Azure.

Microsoft determined that a few months ago, the Microsoft Azure reseller account, used to manage Microsoft Office CrowdStrike licenses, made suspicious calls to Microsoft cloud APIs for 17 hours.

“An attempt was made to read the e-mail, which failed, which is confirmed by Microsoft. The fact is that [...]

Several information security companies have released the lists of companies affected by the SolarWinds hack and malware infection of the Orion platform. The victims of hackers include tech companies, local governments, universities, hospitals, banks, telecom operators and many others.

Famous names include Cisco, SAP, Intel, Cox Communications, Deloitte, Nvidia, Fujitsu, Belkin, Amerisafe, Lukoil, Rakuten, Check Point, Optimizely, Digital Reach, and Digital Sense. MediaTek, one of the world’s largest semiconductor manufacturers, is also believed to have been affected, although researchers are not100% sure yet.

Let me remind you that the malware spreading with malicious [...]