JTM Technology

The bad guys are at it again. If you’re having email problems, here’s the likely culprit.

Outlook.com hit by outages as hacktivists claim DDoS attacks Outlook.com is suffering a series of outages today after being down multiple times yesterday, with hacktivists known as Anonymous Sudan claiming to perform DDoS attacks on the service.

A huge ESXiArgs ransomware attack targets VMWare ESXi servers. Patching is paramount!

Massive ESXiArgs ransomware attack targets VMware ESXi servers worldwide Admins, hosting providers, and the French Computer Emergency Response Team (CERT-FR) warn that attackers actively target VMware ESXi servers unpatched against a two-year-old remote code ex*****on vulnerability to deploy ransomware.

https://www.bleepingcomputer.com/news/microsoft/microsoft-windows-domain-joins-may-fail-after-october-updates/

Microsoft: Windows domain joins may fail after October updates Microsoft says that Windows domain join processes may fail with "0xaac (2732)" errors after applying this month's security updates.

A new Windows zero-day allows threat actors to use malicious stand-alone JavaScript files to bypass Mark-of-the-Web security warnings. Threat actors are already seen using the zero-day bug in ransomware attacks.

Exploited Windows zero-day lets JavaScript files bypass security warnings A new Windows zero-day allows threat actors to use malicious JavaScript files to bypass Mark-of-the-Web security warnings. Threat actors are already seen using the zero-day bug in ransomware attacks.

Security analysts have found a SEVERE security vulnerability in the desktop app for Microsoft Teams that gives threat actors access to authentication tokens and accounts with multi-factor authentication (MFA) turned on.

This is big folks. Keep an eye on things here and reach out to JTM Technology for more information.

Microsoft Teams stores auth tokens as cleartext in Windows, Linux, Macs Security analysts have found a severe security vulnerability in the desktop app for Microsoft Teams that gives threat actors access to authentication tokens and accounts with multi-factor authentication (MFA) turned on.