Topic: credential dumping

Sort by: Relevance | Date
  • Remote Access Abuse: The #1 Sign of a Ransomware Attack
    September 9, 2025
    88%

    Remote Access Abuse: The #1 Sign of a Ransomware Attack

    Abuse of remote access software and services is the most common warning sign of an impending ransomware attack, as cybercriminals exploit tools like RDP, AnyDesk, and PowerShell to gain domain administrator privileges. Key defenses include configuring security tools to allow only trusted applicat...

    Read More »
  • Sharepoint ToolShell Attacks Strike Global Orgs on 4 Continents
    October 23, 2025
    65%

    Sharepoint ToolShell Attacks Strike Global Orgs on 4 Continents

    The ToolShell vulnerability (CVE-2025-53770) in Microsoft SharePoint is a critical zero-day flaw that allows unauthenticated remote attackers to execute arbitrary code and access file systems, bypassing previous vulnerabilities. Microsoft attributes the exploitation to Chinese threat actors like ...

    Read More »

Related Topics

zero-day exploit (1) chinese hackers (1) Mitigation Strategies (1) government targets (1) incident response (1) threat groups (1) multi-factor authentication (1) university targeting (1)