spoofing

Active SharePoint Spoofing and Legacy Office RCE: CISA Alerts on New KEV Exploits

• Vulnerability Report

Active SharePoint Spoofing and Legacy Office RCE: CISA Alerts on New KEV Exploits

Do Son April 15, 2026 0

The Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) Catalog, sounding a...

Read More Read more about Active SharePoint Spoofing and Legacy Office RCE: CISA Alerts on New KEV Exploits

Microsoft Warns of Surge in Internal Domain Spoofing

• Cybercriminals

Microsoft Warns of Surge in Internal Domain Spoofing

Do Son January 7, 2026 0

A wave of sophisticated phishing attacks is hitting organizations by exploiting a classic weakness: the trust users...

Read More Read more about Microsoft Warns of Surge in Internal Domain Spoofing

Homebrew Spoofing: Fake Installer Sites Use Clipboard Injection to Compromise macOS Developers

• Cybercriminals

Homebrew Spoofing: Fake Installer Sites Use Clipboard Injection to Compromise macOS Developers

Do Son October 13, 2025 0

Researchers from Kandji’s Threat Intelligence team uncovered a malware campaign targeting macOS users through spoofed Homebrew installer...

Read More Read more about Homebrew Spoofing: Fake Installer Sites Use Clipboard Injection to Compromise macOS Developers

Microsoft: China-Backed APTs Actively Exploiting SharePoint Flaws (CVE-2025-49704 & CVE-2025-49706)

• Cybercriminals
• Vulnerability Report

Microsoft: China-Backed APTs Actively Exploiting SharePoint Flaws (CVE-2025-49704 & CVE-2025-49706)

Do Son July 23, 2025 0

Last week, the Microsoft Security Response Center (MSRC) issued an urgent advisory regarding active exploitation of critical...

Read More Read more about Microsoft: China-Backed APTs Actively Exploiting SharePoint Flaws (CVE-2025-49704 & CVE-2025-49706)

Microsoft 365 “Direct Send” Abused: Phishing Campaign Spoofs Internal Users, Bypasses Security

• Cybercriminals

Microsoft 365 “Direct Send” Abused: Phishing Campaign Spoofs Internal Users, Bypasses Security

Do Son June 28, 2025 0

Varonis’ Managed Data Detection and Response (MDDR) Forensics team has uncovered a stealthy and widespread phishing campaign...

Read More Read more about Microsoft 365 “Direct Send” Abused: Phishing Campaign Spoofs Internal Users, Bypasses Security

Windows Hello Update: Microsoft Disables Facial Recognition in the Dark Due to Security Flaw

• Vulnerability Report
• Windows

Windows Hello Update: Microsoft Disables Facial Recognition in the Dark Due to Security Flaw

Do Son June 17, 2025 0

Facial recognition technology is increasingly prevalent across a variety of scenarios; however, cases of identity fraud continue...

Read More Read more about Windows Hello Update: Microsoft Disables Facial Recognition in the Dark Due to Security Flaw

Fun with bettercap: Change title, disable click, replace image and add video on victim browser

• Technique

Fun with bettercap: Change title, disable click, replace image and add video on victim browser

Do Son February 12, 2017

Introduce bettercap is a complete, modular, portable and easily extensible MITM tool and framework with every kind...

Read More Read more about Fun with bettercap: Change title, disable click, replace image and add video on victim browser