Microsoft cybersecurity experts: The goal is to stay under the radar and establish persistence in targeted networks. The APT attacked France and Vietnam.
Microsoft: These mechanisms, based on PSTN, are the least secure of the MFA methods today. That gap will only widen as adoption increases cybercrime’ interest.
UK NCSC experts: It’s the CVE-2020-16952. It can be exploited when a user uploads a specially crafted application package to an affected version of SharePoint.
Microsoft cybersecurity experts: The malware doesn’t encrypt the files. It blocks access to device by displaying a screen with the ransom note that appears over every other window.
Microsoft cyber security experts: Foreign activity stepped up targeting the 2020 vote. It’s the work of well known actors as Strontium, Zirconium and Phosphorus.
They are the CVE-2020-1425 and the CVE-2020-1457, and affects Library on several Windows 10 and Windows Server versions. Up to date, there aren’t any alternative mitigating measures.