Dick O'Brien from Symantec Threat Hunter team is discussing their research on “Graph: Growing number of threats leveraging Microsoft API.” The team observed an increasing number of threats that have begun to leverage the Microsoft Graph API, usually to facilitate communications with command-and-control (C&C) infrastructure hosted on Microsoft cloud services.
The research states "the technique was most recently used in an attack against an organization in Ukraine, where a previously undocumented piece of malware used the Graph API to leverage Microsoft OneDrive for C&C purposes."
The research can be found here:
AWS in Orbit: Extending the resilient edge to space. [T-Minus AWS in Orbit]
Encore: Stu Sjouwerman: Trying for a win, win, win game. [CEO] [Career Notes]
AWS in Orbit: Building a resilient outernet. [T-Minus AWS in Orbit]
Breaking down a high-severity vulnerability in Kubernetes. [Research Saturday]
Privacy, power, and the path forward.
Cyber Talent Insights: Navigating the landscape for enterprise organizations. (Part 1 of 3) [Special Edition]
Apple's worldwide warning on mercenary attacks.
From deadlock to debate on a revised Section 702 bill.
Unraveling a healthcare ransomware web.
A possible breakthrough in data privacy legislation.
Encore: Selena Larson: The Green Goldfish and cyber threat intelligence. [Analyst] [Career Notes]
Leaking your AWS API keys, on purpose? [Research Saturday]
Deciphering the Acuity cybersecurity incident.
Securing secrets: The State Department's cyber hunt.
Biden administration brings down the hammer.
From lawsuit to logoff: Google's incognito mode makeover.
Unmasking the xzploitation.
Encore: Liji Samuel: Leaping beyond the barrier. [Certification] [Career Notes]
The supply chain in disarray. [Research Saturday]
Pentagon’s cybersecurity roadmap.
Create your
podcast in
minutes
It is Free
The WAN Show
Cyber Security Headlines
gm! crypto
Cybersecurity Today
Techmeme Ride Home