J〽️ Lafalaise

⚠️Hackers Use Microsoft Teams to Steal Credentials and Manipulate MFA Source: https://t.co/vP8XcWXkkW The intrusion began with unsolicited external chat requests sent to employees via Microsoft Teams. Once contact was established, the threat actor initiated interactive screen-sharing sessions, leveraging direct visibility into user desktops to execute discovery commands including ipconfig /all, whoami, and net start. Victims were then explicitly instructed to type their credentials into locally created text files named credentials.txt and cred.txt and to add attacker-controlled devices to their MFA configurations. #cybersecuritynews

⚠️ Microsoft Edge Stores All Saved Passwords in Cleartext Process Memory at Launch Source: https://t.co/ROEbnQ9syu Microsoft Edge decrypts every stored password into process memory the moment the browser launches and keeps them there as cleartext, regardless of whether the user ever visits those sites. A researcher who systematically tested every major Chromium-based browser for credential memory handling behavior. Edge was the only browser that exhibited this behavior, loading the entire password vault into plaintext process memory at startup and retaining it for the duration of the session. In a published proof-of-concept video accompanying the disclosure, a compromised administrator account was used to successfully extract stored credentials. #cybersecuritynews

L'ensemble de notre parc infogéré est immunisé contre la faille Copy Fail depuis ce matin à 10h47. ⚠️ Une vulnérabilité critique du noyau Linux qui permet l'élévation de privilèges locale sur quasiment toutes les distributions depuis 2017. Il faut mettre à jour rapidement ! 👉 https://t.co/16djyPaQ6q

Microsoft introduces Backup and Recovery for Microsoft Entra ID! Entra Backup and Recovery solution enables you to quickly recover from malicious attacks or accidental changes by reverting your core tenant objects to any previous state within the last 5 days. With automated backups and granular recovery capabilities, it ensures minimal downtime and supports your business continuity in the face of unexpected disruptions. Entra automatically generates one backup per day, retaining the last 5 days of backup history. You can recover key properties of the following core tenant objects: - Users - Groups - Applications - Conditional access policies - Service principals - Organization - Authentication methods - Authorization policy - Named locations #EntraID #Microsoft365 #Microsoft

DevOps Engineers ⚙️ Quick cheat sheet: Essential network ports you deal with daily! Whether you're troubleshooting firewalls, configuring security groups, setting up Kubernetes clusters, or hardening Docker hosts, knowing these ports saves hours of debugging. Must-know list: - HTTP → 80 - HTTPS → 443 - SSH → 22 - FTP → 21 - MySQL → 3306 - Kubernetes API Server → 6443 - Docker Daemon API → 2375 / 2376 (TLS) - MongoDB → 27017 - NGINX (default) → 80 / 443 - Grafana → 3000 - Prometheus → 9090 - Tomcat → 8080 - Apache Kafka → 9092 - Redis → 6379 - RDP (Remote Desktop) → 3389 - Elasticsearch → 9200 - Jenkins → 8080 - SMTP → 25 Pro tip: Always expose only what’s necessary and never leave the Docker API (2375/2376) open to the internet without strong auth/TLS! 🔒 Which port do you fight with the most in your environment? Drop it in the comments 👇