Researchers discovered the vulnerability in an API already integrated into many bank systems, which could have defrauded millions of users by giving attackers access to their funds.
Threatpost
Posts tagged "Accounts"
SSRF Flaw in Fintech Platform Allowed for Compromise of Bank Accounts
Researchers discovered the vulnerability in an API already integrated into many bank systems, which could have defrauded millions of users by giving attackers access to their funds.
Threatpost
Facestealer Trojan Hidden in Google Play Plunders Facebook Accounts
The trojanized Craftsart Cartoon Photo Tools app is available in the official Android app store, but it’s actually spyware capable of stealing any and all information from victims’ social-media accounts.
Threatpost
Microsoft Accounts Targeted by Russian-Themed Credential Harvesting
Malicious emails warning Microsoft users of “unusual sign-on activity” from Russia are looking to capitalizing on the Ukrainian crisis.
Threatpost
Attackers Target Intuit Users by Threatening to Cancel Tax Accounts
The usual tax-season barrage of cybercriminal activity is already underway with a phishing campaign impersonating the popular accounting and tax-filing software.
Threatpost
Soon you can manage your Office and Xbox accounts within Windows 11
Microsoft is making further improvements to Windows 11 with a better way to manage your Office and Xbox subscriptions within the Settings app if a Windows Insider build is to be believed.
A Windows Insider build can allow a user to sign up to a release of Windows that’s under development, which could showcase new apps, new features, or different ways to access parts of the user interface.
This change has been in the ‘Dev Channel’ of Windows Insider since late last year and has recently moved up to the ‘Release Channel’ build, numbered 22000.466. This most likely means that we could be seeing this arrive to all Windows 11 users sooner than Sun Valley 2, the next big update to the operating system.
Analysis: It’s about time
We’ve been pleased to see Microsoft constantly look at aspects of Windows and how it could make the operating system easier on the eye, or just easier to use. While this is a small change, it’s going to make a big difference to those who manage Office subscriptions for their family or small business, or your personal Xbox Game Pass subscription.
Going to 'Settings > Accounts > Your Microsoft Account' in the Windows 11 Release Channel will show your active subscriptions, payment history, and rewards, mirroring what you would normally see on the web.
It’s another aspect of Microsoft focusing on the usability of Windows. In the past, such as Windows 8 and Windows Phone, form seemed to matter more than function, and once you got past the main feature that the company was showcasing, you’d be greeted with apps or message boxes that felt as though they had time traveled from Windows 95.
But with other improvements such as a new Task Manager coming, the return of Windows Media Player, and a better Microsoft Store, it looks as though Windows 11 is already shaping up to be a release that’s focusing on the future, not the past.
Regardless, we may see further improvements to how we use the apps and settings that we’ve been used to for years. And if that means few clicks and less confusion for more users, then it will benefit everyone.
- How to fix the most common Windows 11 issues
Via MSPowerUser
Box 2FA Bypass Opens User Accounts to Attack
A security bug in the file-sharing cloud app could have allowed attackers using stolen credentials to skate by one-time SMS code verification requirements.
Threatpost
Microsoft Teams will soon let you combine both your accounts so there’s no escape
Switching between personal and workplace Microsoft Teams accounts could soon be a thing of the past thanks to a new update to the service.
The video conferencing platform is rolling out changes that will allow users to combine business and consumer Teams accounts, hopefully putting an end to any unfortunate confusion.
Microsoft says the change will allow for much improved communication for Teams users across the world, even opening the door for personal chats whilst on a work network.
Combined Microsoft Teams
“With this update Teams users in your organization will be able to start a 1:1 or a group chat with Teams users who are using their personal accounts and vice-versa,” Microsoft noted in an updated message center notification.
The feature was first announced by Microsoft back in February 2021, but has now entered the rolling out period, meaning users will be able to access it soon.
“Teams users will be able to chat with team members who are outside their work network and have a Teams personal account,” the official Microsoft 365 roadmap entry for the update added.
“This is expanding on external access capabilities, enabling Teams users to invite for a 1:1 or group chat any other federated Teams users using an email address or phone number and remain within the security and compliance policies of their organization.”
The update is coming to all Microsoft Teams desktop users around the world, so be sure to keep your program updated to the latest release.
The change is the latest in a series of Microsoft Teams updates as the firm looks to continue helping companies around the world adapt to the new age of hybrid working.
Along with video capabilities, Microsoft Teams also added chat bubbles to its online collaboration tool last year, meaning that users shouldn't miss private messages sent during a video call. Microsoft has also added this feature to group chats so that everyone can keep up with the conversations happening via text as well as those taking place in a video call at the same time, allowing everyone to view chats sent during a meeting on the front of room display in a Teams Room.
- Looking to improve your video calls? Check out our roundups of the best business webcams and best headsets for conference calls
1.1M Compromised Accounts Found at 17 Major Companies
The accounts fell victim to credential-stuffing attacks, according to the New York State AG.
Threatpost
Time to Ditch Big-Brother Accounts for Network Scanning
Yaron Kassner, CTO and co-founder of Silverfort, discusses why using all-seeing privileged accounts for monitoring is bad practice.
Threatpost