We’ve brought together this week’s most important news from the world of cybersecurity.

Microsoft presented a report on attacks by Russian hackers since the beginning of the war and announced a reduction in business in Russia.

Microsoft CEO Brad Smith told The Washington Post that the company will continue to cut its business in Russia “until there is nothing left”.

Earlier, users from the Russian Federation began to complain about the inability to download a number of products from the Microsoft website, including utilities for installing Windows 10 and 11.

In March, the company announced the suspension of sales of new products and services due to the Russian Federation’s invasion of Ukraine.

This week, Microsoft also released a report on cyberattacks by Russian hackers since the beginning of the war. Main results:

• Ukraine was able to successfully resist most attacks by Russian hackers. Microsoft recorded “many waves of cyberattacks” against 48 Ukrainian organizations and businesses. Hackers tried to break into network domains by spreading malware.
• One of the steps in which the processes carried out by the Ukrainian authorities over the technological infrastructure practically did not affect the attacks was Ukraine’s fast and successful transfer of data abroad to data centers in Europe.
• Russian hackers attacked states that support Ukraine. Microsoft experts identified attempts to infiltrate the networks of 128 organizations in 42 countries. They were successful in only 29% of cases. The company also noted that Russian hackers can coordinate their actions with the Russian military.

• Microsoft claims that the day before the war broke out, 19 Ukrainian government websites were hacked by the FoxBlade malware. The company believes it was developed and launched by the same group behind the 2017 NotPetya attack.

Former Amazon employee found guilty of hacking Capital One and stealing data from over 100 million people

Former Amazon employee Paige Thompson used an Amazon Web Services account scan tool she created to look for misconfigured accounts.

He then hacked accounts and stole data from more than 30 organizations, including the Capital One bank. Additionally, Thompson installed cryptocurrency mining software on compromised servers.

The Seattle District Court found him guilty and could face up to 25 years in prison.

Durov said Telegram does not share user data with Google

Telegram founder Pavel Durov has commented on user concerns regarding the use of Google speech recognition technology to transcribe voice messages to text when subscribing to Telegram Premium.

Some are worried that the feature threatens privacy. However, Durov announced an agreement between the messenger and Google, stating that Google “can do nothing with this impersonal voice data except to create text versions based on it and return them.”

WordPress sites had to be updated due to discovered vulnerability

WordPress sites using the Ninja Forms plugin had to be updated due to a critical security vulnerability fix. Discovered by Wordfence experts.

Hackers can use the vulnerability to take full control of the site.

US authorities announce elimination of RSOCKS botnet

During the international operation, law enforcement eliminated the RSOCKS botnet. It is allegedly controlled by Russian hackers.

RSOCKS operators have compromised millions of devices worldwide. They gave customers access to the IP addresses assigned to the hacked devices. The cost of access ranged from $30 per day for 2,000 proxies to $200 per day for 90,000 proxies.

The FBI began monitoring RSOCKS in 2017. Later, law enforcement officers from Germany, the Netherlands, and Great Britain joined the operation to eliminate the botnet.

Also on ForkLog:

What to read on the weekend?

In the background to the questions asked to Telegram this week, we tell you what is wrong with the messenger and what alternatives are there to protect privacy.

Read ForkLog bitcoin news in our Telegram – cryptocurrency news, courses and analysis.