Dick O'Brien from Symantec Threat Hunter team is discussing their research on “Graph: Growing number of threats leveraging Microsoft API.” The team observed an increasing number of threats that have begun to leverage the Microsoft Graph API, usually to facilitate communications with command-and-control (C&C) infrastructure hosted on Microsoft cloud services.
The research states "the technique was most recently used in an attack against an organization in Ukraine, where a previously undocumented piece of malware used the Graph API to leverage Microsoft OneDrive for C&C purposes."
The research can be found here:
Change Healthcare hackers cash in $22 million ransom.
Encore: Monica Ruiz: Moving ahead when not many look like you. [Policy]
Cyberattack causes a code red on US healthcare.
Encore: Pattie Dillon: Take the leap. [Anti-fraud] [Career Notes]
The return of a malware menace. [Research Saturday]
WhatsApp's legal triumph cracks the spyware vault.
Iran's cyber quest in Middle Eastern aerospace.
Protecting American data.
Out with the old, in with the new.
LockBit reloaded: Unveiling the next chapter in cybercrime.
Encore: Chris Cochran: Rely on your strengths in the areas of the unknown. [Engineering] [Career Notes]
Web host havoc: Unveiling the Manic Menagerie campaign. [Research Saturday]
Crackdown on privacy leads to a multi-million dollar fine.
AT&T outage leaves major cities offline.
Anchoring security for US ports.
The reign of digital terror ends.
AWS in Orbit: Leveraging generative AI to do more at the rugged space edge with AWS. [T-Minus]
What’s a CNAPP: Cloud-Native Application Protection Platform? [CyberWire-X]
Encore: Dominique Shelton Leipzig: No matter the statistics, even if against the odds, focus on what you want. [Legal] [Career Notes]
Hackers come hopping back. [Research Saturday]
Create your
podcast in
minutes
It is Free
The WAN Show
Cyber Security Headlines
gm! crypto
Cybersecurity Today
Techmeme Ride Home