Dick O'Brien from Symantec Threat Hunter team is discussing their research on “Graph: Growing number of threats leveraging Microsoft API.” The team observed an increasing number of threats that have begun to leverage the Microsoft Graph API, usually to facilitate communications with command-and-control (C&C) infrastructure hosted on Microsoft cloud services.
The research states "the technique was most recently used in an attack against an organization in Ukraine, where a previously undocumented piece of malware used the Graph API to leverage Microsoft OneDrive for C&C purposes."
The research can be found here:
International effort dismantles LockBit. [Research Saturday]
Cybercriminals target London drugs.
Checkmate at check in.
Privacy nightmare or useful tool?
The secrets of a dark web drug lord.
Double key encryption debate.
Encore: Monica Ruiz: Moving ahead when not many look like you. [Policy] [Career Notes]
From secret images to encryption keys. [Research Saturday]
10 years on: The 10th anniversary of the first indictment of Chinese PLA actors. [Special Edition]
MediSecure data breach hits Aussie healthcare.
FBI strikes against a cybercrime syndicate.
A bipartisan blueprint for American leadership.
Google strikes back.
A battle for digital sovereignty.
Encore: Brandon Robinson: Built from the ground up. [Sales Engineer] [Career Notes]
Treasury's offensive in financial defense.
Healthcare in the crosshairs.
The takedown of a ransomware ringleader.
Hack-proofing the future to shape cyberspace.
Create your
podcast in
minutes
It is Free
WSJ Tech News Briefing
The 404 Media Podcast
Rebel Tech
Click Here
Cyber Security Headlines