Midnight Blizzard hackers used Microsoft’s stolen authentication secrets to advance into their internal system and access source code. The Russian attackers initially used password spraying to get into a legacy non-production test tenant account. Microsoft disclosed this initial attack in January 2024. The compromised account had access to an OAuth application with elevated privilege to […]

The post Russians Used Microsoft’s Stolen Authentication Secrets to Access Source Code appeared first on Heimdal Security Blog.

On Heimdal’s 10th Birthday, we want to thank everyone who shaped our journey from 2014 to today, and the future. Ours is a story of perseverance, innovation, and the relentless pursuit of excellence through community empowerment. What better way to celebrate than by sharing that story with you? 2011 – Heimdal® wins CTF Championship. Source: […]

The post Heimdal’s 10th Anniversary – Our Finest Hours appeared first on Heimdal Security Blog.

It’s a good time to be a Managed Service Provider. According to analysis by Mordor Intelligence, the global MSP market is set to rise from $281bn in 2024 to $411bn in 2028. The need for skilled IT support is continually growing, and MSPs are perfectly placed to meet this demand. Understanding what MSPs can offer […]

The post What Is An MSP (Managed Service Provider)? A Vendor and Buyer Guide appeared first on Heimdal Security Blog.

Capita, a British outsource company has reported a staggering annual loss of more than £106 million, significantly attributed to a ransomware attack by the Black Basta group last March. The hack was directly responsible for nearly a fourth of these losses, costing the corporation £25.3 million in related expenditures, according to the company’s annual report. Capita said […]

The post Capita Reports a Yearly Loss of about £106M Due to Cyberattack appeared first on Heimdal Security Blog.

Large-scale attacks on WordPress websites are being carried out by hackers to insert scripts that compel users’ browsers to try different websites’ passwords repeatedly. Cybersecurity researchers have been tracking a threat actor known for breaching sites to inject crypto wallet drainer scripts which steal all cryptocurrency and assets of victims when they connect to their […]

The post WordPress Websites Used by Threat Actor to Launch Brute-Force Attacks appeared first on Heimdal Security Blog.

A new critical-severity vulnerability in TeamCity On-Premises is being exploited by threat actors. CVE-2024-27198 is an authentication bypass vulnerability with a critical severity score of 9.8 out of 10. It affects all versions through 2023.11.4 of TeamCity’s on-premises edition software. The exploitation appears to be massive. Hundreds of new users created on unpatched instances of […]

The post Critical TeamCity On-Premises Vulnerability Actively Exploited by Threat Actors appeared first on Heimdal Security Blog.

The rise of GenAI (Generative AI) gives leeway to malicious content creators with 80% of all phishing campaigns discovered in the wild being generated by AI tools such as ChatGPT or similar. In this article, we are going to explore the latest phishing techniques that capitalize on GenAI. A new milestone in phishing Why is […]

The post There’s Something Phishy About Generative AI appeared first on Heimdal Security Blog.

Keeping your clients’ IT systems operational and secure is important for a Managed Service Provider (MSP), and having the right tools at your disposal isn’t just important, it’s mandatory for thriving the MSP space. There are tens of solutions to choose from but from these, a few stood out in particular, and one of these […]

The post 8 Best N-Able Alternatives & Competitors in 2024 (for MSPs) appeared first on Heimdal Security Blog.

Microsoft took six months to patch an actively exploited Windows kernel zero-day. Successful exploitation of CVE-2024-21338 gives attackers system privileges over the infected device. The patch for this flaw is available in the February 2024 Patch Tuesday updates. Security researchers urge Windows users to apply patches as soon as possible, to avoid privilege escalation. Windows […]

The post Windows Kernel Zero-day Patched after Six Months of Active Exploitation appeared first on Heimdal Security Blog.