Aggregator

A sophisticated account takeover campaign has emerged, exploiting a legitimate penetration testing framework to compromise Microsoft Entra ID environments across hundreds of organizations worldwide. The malicious activity, which began intensifying in December 2024, demonstrates how cybercriminals are increasingly weaponizing security tools originally designed for defensive purposes. The campaign leverages TeamFiltration, a publicly available pentesting framework […]

The post New Account Takeover Campaign Leverages Pentesting Tool to Attack Entra ID User Accounts appeared first on Cyber Security News.

It's time to fly! It's two months to the day since we came back from the last European trip, again spending the time with some of the agencies and partners we've fostered at HIBP over the years. This time, it's the driving

Cybersecurity researchers at GreyNoise Intelligence have identified a significant coordinated attack campaign targeting Apache Tomcat Manager interfaces across the globe. On June 5, 2025, the company’s threat detection systems registered activity levels far exceeding normal baselines, with nearly 400 unique IP addresses participating in what appears to be a large-scale reconnaissance and access attempt operation. […]

The post Hackers Launch Coordinated Attack on Apache Tomcat Manager from 400 Unique IPs appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.