Skip to main content

Tag: microsoft graph api

4 articles

Laptop screen showing communication platform on a neutral surface with blurred chat interface and cityscape background.

Webworm Expands Arsenal with EchoCreep, GraphWorm Backdoors

Meet Webworm's latest tricks: EchoCreep and GraphWorm, two custom backdoors that let the China-aligned actor control and manipulate systems using unconventional channels like Discord and Microsoft Graph API. These new tools enable file uploads, downloads, and command execution, showcasing Webworm's creative approach to cyber threats.

Analyst 207
Security analyst's workstation with multiple screens displaying code and threat analysis tools in a neutral office setting.

Harvester Expands Linux Arsenal with GoGra Backdoor in South Asia

Harvester's Linux arsenal just got a boost with the deployment of the GoGra backdoor in South Asia, enabling the threat actor to sneak past traditional network defenses by hijacking legitimate Microsoft Graph API and Outlook mailboxes. This latest move is linked to Harvester's earlier espionage campaigns targeting key sectors in the region.

Analyst 207
Laptop screen displays loading animation amidst blurred office workspace with printer and papers, suggesting disrupted…

Microsoft Graph API Change Disrupts Universal Print Sharing

Microsoft revealed that a recent code change to the Microsoft Graph API caused a ripple effect, introducing a critical error that disrupted Universal Print sharing and left many users in a frustrating limbo. The error sparked a chain reaction, exposing a long-standing issue that prevented share operations from completing as expected.

Analyst 207
Cluttered workspace with Linux terminal and laptop, cityscape outside, surrounded by notes and coffee cups.

Harvester Malware Exploits Microsoft Graph API for Stealthy Linux Attacks

Meet Harvester, a stealthy espionage group believed to be state-backed, that's been secretly targeting telecommunications, government, and IT organizations in South Asia since 2021. Their latest trick? A Linux-capable GoGra backdoor that uses Microsoft Graph API for covert communications.

Analyst 207