Fake CAPTCHA Scam Tricks Windows Users Into Installing Malware

A fake CAPTCHA scam is tricking Windows users into running PowerShell commands that install StealC malware and steal passwords, crypto wallets, and more.
Dark Reading

TeamPCP Turns Cloud Infrastructure Into Crime Bots

The threat actor has been compromising cloud environments at scale with automated worm-like attacks on exposed services and ...
PC Magazine

Report: Microsoft Hands Over Keys for BitLocker-Encrypted Data to FBI

Microsoft handed over keys to BitLocker-encrypted data stored on its servers during an FBI probe last year, granting access to data on three separate laptops. BitLocker, a built-in data protection ...
Windows Report

Microsoft Starts New Kerberos Hardening Phase for Windows Domain Controllers

To tackle that, Microsoft has started rolling out protections designed to prevent information disclosure attacks that could expose Kerberos service tickets using weak or legacy encryption, including ...
Hosted on MSN

Microsoft is cutting off a legacy cipher that caused decades of damage

Microsoft is finally ripping out one of the weakest links in its identity stack, cutting off a legacy cipher that attackers have abused for years to walk straight into corporate networks. The move ...
TechSpot

Microsoft will soon deprecate the insecure RC4 encryption algorithm

About time: Microsoft introduced support for the RC4 stream cipher in Windows 2000 as the default authentication algorithm for the Active Directory services. The system has been insecure for even ...
HHS

Microsoft to Kill RC4 in Kerberos by 2026

Microsoft is officially moving to shut the door on RC4 - a legacy cryptographic cipher that has quietly persisted inside Windows authentication environments for decades - and forcing organizations to ...