Midnight Blizzard Archives • Daily CyberSecurity

A Digital Watering Hole: How Russia’s APT29 Is Abusing Microsoft Auth Flow APT29, watering hole campaign

A Digital Watering Hole: How Russia’s APT29 Is Abusing Microsoft Auth Flow

Do Son August 31, 2025

Amazon’s threat intelligence team has identified and disrupted a watering hole campaign conducted by APT29 (also known...

Russian Hackers Exploit Microsoft Device Code Authentication in Targeted Attacks Against M365 Accounts Device Code Authentication phishing

Russian Hackers Exploit Microsoft Device Code Authentication in Targeted Attacks Against M365 Accounts

Do Son February 16, 2025

Cybersecurity researchers at Volexity have uncovered a series of targeted phishing and social engineering campaigns by multiple...

Midnight Blizzard Targets 100+ Organizations in RDP Phishing Attack

Do Son October 29, 2024

Microsoft Threat Intelligence has issued a warning about a new spear-phishing campaign orchestrated by the Russian state-sponsored...

NSA, FBI, and Allies Expose Ongoing Russian Cyber Espionage Operations Cyber Operations Messaging App Security State-Sponsored Hijacking

NSA, FBI, and Allies Expose Ongoing Russian Cyber Espionage Operations

Do Son October 11, 2024

Recently, the National Security Agency (NSA), Federal Bureau of Investigation (FBI), the United States Cyber Command’s Cyber...

TeamViewer Confirms Cyberattack by Notorious APT Group TeamViewer Cyberattack

TeamViewer Confirms Cyberattack by Notorious APT Group

Do Son June 27, 2024

TeamViewer, a remote control tool trusted by millions of users globally, has disclosed a significant cyberattack. A...

Nobelium Continues to Strike High-Profile Targets hackerbot-claw campaign Cisco RCE Exploit CVE-2026-20045 SonicWall VPN, Akira Ransomware Nobelium Apache Tomcat, Apache Camel

hackerbot-claw campaign Cisco RCE Exploit CVE-2026-20045 SonicWall VPN, Akira Ransomware Nobelium Apache Tomcat, Apache Camel

Nobelium Continues to Strike High-Profile Targets

Do Son June 20, 2024

The French National Cybersecurity Agency (ANSSI) has issued a warning about the continued activity of the Nobelium...

Midnight Blizzard Accesses Microsoft Internal Systems and Source Code Microsoft source code Windows RDP Security Update

Midnight Blizzard Accesses Microsoft Internal Systems and Source Code

Do Son March 8, 2024

Microsoft has confirmed a new, significant intrusion by the persistent Russia-based hacking group Midnight Blizzard (NOBELIUM). The...

Russian Hackers Midnight Blizzard Compromise Microsoft’s Email Data Midnight Blizzard Microsoft

Russian Hackers Midnight Blizzard Compromise Microsoft’s Email Data

Do Son January 19, 2024

In an unprecedented turn of events, Microsoft’s security team has recently unearthed an insidious cyber attack, carried...

APT29 Lures Victims with Fake BMW Ads in Latest Attack APT29

APT29 Lures Victims with Fake BMW Ads in Latest Attack

Do Son December 1, 2023

The hacking collective APT29, also known as Cozy Bear and Midnight Blizzard, recently orchestrated a malicious campaign...

Critical Alert 3 Active Exploits Detected Today

Critical Alert

Midnight Blizzard

A Digital Watering Hole: How Russia’s APT29 Is Abusing Microsoft Auth Flow

Russian Hackers Exploit Microsoft Device Code Authentication in Targeted Attacks Against M365 Accounts

Midnight Blizzard Targets 100+ Organizations in RDP Phishing Attack

NSA, FBI, and Allies Expose Ongoing Russian Cyber Espionage Operations

TeamViewer Confirms Cyberattack by Notorious APT Group

Nobelium Continues to Strike High-Profile Targets

Midnight Blizzard Accesses Microsoft Internal Systems and Source Code

Russian Hackers Midnight Blizzard Compromise Microsoft’s Email Data

APT29 Lures Victims with Fake BMW Ads in Latest Attack