Over 80,000 Microsoft Entra ID Accounts Targeted Using Open-Source TeamFiltration Tool

June 12, 2025

Cybersecurity researchers have uncovered a new account takeover (ATO) campaign that leverages an open-source penetration testing framework called TeamFiltration to breach Microsoft Entra ID (formerly Azure Active Directory) user accounts.
The activity, codenamed UNK_SneakyStrike by Proofpoint, has targeted over 80,000 user accounts across hundreds of organizations’ cloud tenants since a surge in

Source: Read More

Previous ArticleEmpty shelves after US’s largest natural and organic food distributor suffers cyber attack

Next Article Smashing Security podcast #421: Toothpick flirts, Google leaks, and ICE ICE scammers

Highlights

CVE-2024-1243 – Wazuh Agent for Windows UNC Path Manipulation Vulnerability

June 11, 2025

CVE ID : CVE-2024-1243

Published : June 11, 2025, 2:15 a.m. | 3 hours, 36 minutes ago

Description : Improper input validation in the Wazuh agent for Windows prior to version 4.8.0 allows an attacker with control over the Wazuh server or agent key to configure the agent to connect to a malicious UNC path. This results in the leakage of the machine account NetNTLMv2 hash, which can be relayed for remote code execution or used to escalate privileges to SYSTEM via AD CS certificate forging and other similar attacks.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Ultimate Guide to Node.js Development Pricing for Enterprises

Stack Overflow: Developers’ trust in AI outputs is worsening year over year

Web Components: Working With Shadow DOM

Google’s new Opal tool allows users to create mini AI apps with no coding required

5 preinstalled apps you should delete from your Samsung phone immediately

Ubuntu Linux lagging? Try my 10 go-to tricks to speed it up

How I survived a week with this $130 smartwatch instead of my Garmin and Galaxy Ultra

YouTube is using AI to verify your age now – and if it’s wrong, that’s on you to fix

Time-Controlled Data Processing with Laravel LazyCollection Methods

Time-Controlled Data Processing with Laravel LazyCollection Methods

Create Apple Wallet Passes in Laravel

The Laravel Idea Plugin is Now FREE for PhpStorm Users

New data shows Xbox is utterly dominating PlayStation’s storefront — accounting for 60% of the Q2 top 10 game sales spots

New data shows Xbox is utterly dominating PlayStation’s storefront — accounting for 60% of the Q2 top 10 game sales spots

Opera throws Microsoft to Brazil’s watchdogs for promoting Edge as your default browser — “Microsoft thwarts‬‭ browser‬‭ competition‬‭‬‭ at‬‭ every‬‭ turn”

Activision once again draws the ire of players for new Diablo Immortal marketing that appears to have been made with generative AI

Over 80,000 Microsoft Entra ID Accounts Targeted Using Open-Source TeamFiltration Tool

Time-Controlled Data Processing with Laravel LazyCollection Methods

Create Apple Wallet Passes in Laravel

Scoping, Hoisting and Temporal Dead Zone in JavaScript

Beyond Sensor Data: Foundation Models of Behavioral Data from Wearables Improve Health Predictions

Data Lakes Consulting, APIs, AI & Implementation Guide (2025)

MediaTek May 2025 Security Bulletin: Chipset Vulnerabilities Disclosed

CVE-2024-1243 – Wazuh Agent for Windows UNC Path Manipulation Vulnerability

Ads That Actually Deliver

10 Top Node.js Development Companies for Enterprise-Scale Projects (2025-2026 Ranked & Reviewed)

WordPress Sites Turned Weapon: How VexTrio and Affiliates Run a Global Scam Network

Over 80,000 Microsoft Entra ID Accounts Targeted Using Open-Source TeamFiltration Tool

Related Posts