Dick O'Brien from Symantec Threat Hunter team is discussing their research on “Graph: Growing number of threats leveraging Microsoft API.” The team observed an increasing number of threats that have begun to leverage the Microsoft Graph API, usually to facilitate communications with command-and-control (C&C) infrastructure hosted on Microsoft cloud services.
The research states "the technique was most recently used in an attack against an organization in Ukraine, where a previously undocumented piece of malware used the Graph API to leverage Microsoft OneDrive for C&C purposes."
The research can be found here:
Retirement plan breach shakes financial giant.
Ransomware is just a prescription for chaos.
An unprecedented surge in credential stuffing.
Encore: Jack Rhysider: Get your experience points in everything. [Media] [Career Notes]
Cerber ransomware strikes Linux. [Research Saturday]
Kaiser Permanente's privacy predicament.
Cyber Talent Insights: Strengthening the cyber talent pipeline apparatus. (Part 3 of 3) [Special Edition]
The shadowy adversary in Cisco's crosshairs.
Iran's covert cyber operations exposed.
Visa crackdown against spyware swindlers.
Renewed surveillance sparks controversy.
Encore: Kiersten Todt: problem solving and building solutions. [Policy] [Career Notes]
Cloud Architect vs Detection Engineer: Mutual benefit. [CyberWire-X]
The art of information gathering. [Research Saturday]
Swift responses to cyberattacks.
Cyber Talent Insights: Charting your path in cybersecurity. (Part 2 of 3) [Special Edition]
From phishing to felony.
The rebirth of Russia's cyber warfare.
Weathering the phishing front.
Hunting vulnerabilities.
Create your
podcast in
minutes
It is Free
gm! crypto
Cyber Security Headlines
The WAN Show
Cybersecurity Today
Techmeme Ride Home