Microsoft Windows ‘Hack Your Own Password’ Attack Warning Issued

Windows users can protect themselves from falling victim to ongoing “hack your own password” attacks by doing these three ...
CSOonline

How to keep attackers from using PowerShell against you

New guidance shows how to harden PowerShell and make it more difficult for threat actors to hijack for malicious purposes. Living off the land is not the title of a gardening book. It’s the goal of ...
Bleeping Computer

New FileFix attack weaponizes Windows File Explorer for stealthy commands

A cybersecurity researcher has developed FileFix, a variant of the ClickFix social engineering attack that tricks users into executing malicious commands via the File Explorer address bar in Windows.
CSOonline

How to log and monitor PowerShell activity for suspicious scripts and commands

Attackers are increasingly abusing sanctioned tools to subvert automated defenses. Tracking your Windows fleet’s PowerShell use — especially consultant workstations — can provide early indications of ...
ZDNet

NSA, CISA say: Don't block PowerShell, here's what to do instead

Cybersecurity authorities from the US, the UK, and New Zealand have advised businesses and government agencies to properly configure Microsoft's built-in Windows command-line tool, PowerShell – but ...