By continuing to use the site or forum, you agree to the use of cookies, find out more by reading our GDPR policy

A new phishing campaign is underway that pretends to be a list undelivered email being held for you on your Outlook Web Mail service. Users are then prompted to decide what they wish to do with each mail, with the respective links leading to a fake login form. Recently, we have seen quite a few interesting spam campaigns such as account cancellation notices and alerts about unusual volumes of file deletions. This campaign is just as interesting as it uses the subject line of "Notifications | undelivered emails to your inbox" and pretends to be a list of email being held on the server for you. This phishing email then prompts you to decide whether you want to delete all of the emails, deny them, allow them to be delivered, or to whitelist them for the future. Regardless of the link you click on, you will be brought to a fake "Outlook Web App" landing page that asks you to enter your login credentials. Once you enter your credentials, the page will save them so that they can be retrieved by the scammer at a later date. Thankfully, unlike recent phishing landing pages hosted on Excel Online or Microsoft Azure, this phishing scam utilizes a landing page hosted on a hacked site. This makes it easier to detect as suspicious as the URL will not be the correct one for your email server. As always, when receiving emails that lead to login forms, make sure to examine the URL where the form resides before entering your login credentials. If there is any doubt, always ask your system administrators. We have the text of the mail posted on OUR FORUM.

Microsoft’s Azure cloud services have become an attractive option for cybercriminals to store malicious content. From phishing templates to malware and command and control services, it seems that crooks found a new place for them. Just this month, BleepingComputer reported on two incidents related to malware on Azure. In one case there were about 200 websites showing tech-support scams that were hosted on the platform. Another article, published this week, informs of Azure being used of hosting a phishing template for Office 365. Being both products from Microsoft, the scam appears as a legitimate login request, increasing the success rate. It appears that these are not isolated incidents. Security researchers JayTHL and MalwareHunterTeam found malware on Azure and reported it to Microsoft on May 12. According to AppRiver cybersecurity company, the reported piece of malware along with other samples that were uploaded at a later time was still present on Microsoft’s Azure infrastructure on May 29. “It's evident that Azure is not currently detecting the malicious software residing on Microsoft's servers,” says David Pickett of AppRiver. One of the samples, ‘searchfile.exe,’ was indexed by VirusTotal scanning service on April 26, and Windows Defender detects it. The same goes for the malware found by the two researchers, ‘printer/prenter.exe,’ which is an uncompiled portable executable file, specifically so to avoid gateway and endpoint security solutions detecting it upon download. However, Windows Defender will kick in and block the malicious file when users try to download them on the machine. JayTHL details that the sample appears to be a simple agent that runs any command it receives from the command and control server. He determined that there could be as many as 90 bots under control if their ID numbers were generated in sequential order. Follow this security threat on OUR FORUM.

Microsoft has issued a second security warning over BlueKeep, a recently discovered vulnerability in its Remote Desktop Protocol service that could enable attackers to use a worm-like exploit to take over devices running unpatched older Windows operating systems. The software giant took the unusual step Thursday of issuing a second alert within a month concerning the BlueKeep flaw as security researchers expressed growing concerns that bad actors are rapidly developing exploits and that proof-of-concept code has already leaked online. In a new message, Simon Pope, director of incident response for the Microsoft Security Response Center, compared BlueKeep to EternalBlue, the Windows vulnerability that later opened the door to the WannaCry and NotPetya ransomware attacks of 2017. Pope warned that with reports of nearly 1 million Windows devices vulnerable to this flaw, security teams need to apply the patch that Microsoft issued with its first warning on May 14. "It's been only two weeks since the fix was released and there has been no sign of a worm yet. This does not mean that we're out of the woods," Pope warns. "If we look at the events leading up to the start of the WannaCry attacks, they serve to inform the risks of not applying fixes for this vulnerability in a timely manner." The vulnerability affects only older versions of Microsoft's Windows operating system, some of which are no longer supported by the company. The flaw affects Windows XP, Windows 7, Windows 2003 and Windows Server 2008, the company notes. Newer versions of Windows, including Windows 8 and Windows 10, are not affected. Follow this on OUR FORUM.

Microsoft and Intel discovered that on some computers with Intel display drivers users might have issues adjusting their display's brightness because of a driver compatibility issue after applying the Windows 10 May 2019 Update. "After updating to Window 10, version 1903, brightness settings may sometime appear as if changes applied took effect, yet the actual display brightness doesn't change," says Microsoft. To make sure that user experience is not affected, Microsoft has added a compatibility hold on devices with certain incompatible Intel display drivers from being offered the latest Windows 10 release until the issue is resolved. Until a resolution for the driver compatibility issue will be offered with an upcoming Windows 10 release, Microsoft advises all users to "not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved." In addition, a range of Intel Display Audio device drivers has also been found to cause problems leading to higher than normal battery drain. Microsoft also says that, in order to prevent any issues stemming from incompatible Intel Display Audio device drivers, a compatibility hold has been put in place to block the Windows 10 May 2019 Update from being offered until users have installed updated device drivers. Affected Windows users are advised to not apply the Windows 10 May 2019 Update manually before updating their system's Intel Display Audio device drivers and the update is being automatically provided via the Windows Update system. For more turn to OUR FORUM.

Xbox Game Pass, Microsoft’s gaming subscription service will celebrate its second anniversary this June, and the company has just made it official this morning that Xbox Game Pass will finally expand to PC. Sea of Thieves, Gears of War 4, and other Xbox Play Anywhere titles in the Game Pass catalog are already playable for free on Windows 10, but the Xbox Game Pass for PC that Microsoft is announcing today will apparently be a separate service. “Xbox Game Pass for PC will give players unlimited access to a curated library of over 100 high-quality PC games on Windows 10, from well-known PC game developers and publishers such as Bethesda, Deep Silver, Devolver Digital, Paradox Interactive, SEGA, and more. And just as we committed on the console, it is our intent to include new games from Xbox Game Studios in Xbox Game Pass for PC the same day as their global release, including titles from newly acquired studios like Obsidian and inXile,” explained head of Xbox Phil Spencer. For now, Microsoft is working with other 75 developers and publishers, and the company is promising to bring new games to PC players every month, just like it does for Xbox Game Pass subscribers on Xbox One. “Xbox Game Pass for PC members will also receive discounts in the Microsoft Store on Windows of up to 20% on games currently in the library and up to 10% off related game DLC and add-ons,” Spencer added. Follow this on OUR FORUM.

According to numerous rumors, unofficially christened ‘Windows Lite’ may not be seen until 2020. The Redmond giant has just dropped a hint that suggests it is working on a modern version of its desktop operating system. In a blog post for Computex announcement, Microsoft also discussed its vision for modern OS experience, highlighting some of the key features that you can expect. Microsoft appears to be working on a new version of Windows that provides ‘enablers’ to deliver a set of foundational features, including seamless updates. The updating process in Windows 10 isn’t very seamless and users often experience problems. The company says that the updating experience should be entirely seamless on the modern version of Windows as everything will happen in the background. The modern OS updates are done in the background and it is invisible, this ensures that the update experience is reliable and instant with no interruptions. Microsoft is also focusing on security with modern Windows. To secure the environment, the company might separate apps from the operating system and both services will work independently. “A modern OS is also secure by default, the state is separated from the operating system; the computer is separated from applications; this protects the user from malicious attacks throughout the device lifecycle,” Nick Parker, Corporate Vice President, Consumer and Device Sales, explains. Microsoft also remains committed to the idea of always-connected PCs with modern Windows experience. Learn more on OUR FORUM.

 

GTranslate