Microsoft Threat Intelligence

Microsoft Threat Intelligence researchers issued a recent warning that Russian state-sponsored hackers have been targeting Windows users with a custom tool for stealing credentials and even installing backdoors.

Hackers known as APT28, or Fancy Bear (tracked by Microsoft as Forest Blizzard), are using the post-exploitation tool, GooseEgg, against government, education and transport sector organizations in Western Europe, Ukraine and the United States since at least June 2020.

The vulnerability (CVE-2022-38028) was fixed as part of the October 2022 Patch Tuesday rollout, having been first reported by the NSA. Microsoft stresses importance of patching vulnerabilities and organizations, and users are urged to apply the CVE-2022-38028 security update to mitigate this attack. Microsoft Defender Antivirus detects the specific Forest Blizzard capability as HackTool:Win64/GooseEgg.

The short and simple solution is to ensure your version of Windows is up to date, and let Microsoft worry about it for you. Automatic updates are usually performed by Windows (sometimes this feature is turned off for some reason). To check if you are up to date, visit SETTINGS>UPDATE SECURITY and perform a scan.

Subscribe to our newsletter to be kept up to date on this topic, as well as marketing trends and more.
https://ameriwebhosting.com/subscribe.html

On a different subject, did you know Windows is more environmentally friendly than macOS?
Windows puts your deleted files in the Recycle Bin; macOS just throws them in the Trash. (I
never thought of that before!)