Dick O'Brien from Symantec Threat Hunter team is discussing their research on “Graph: Growing number of threats leveraging Microsoft API.” The team observed an increasing number of threats that have begun to leverage the Microsoft Graph API, usually to facilitate communications with command-and-control (C&C) infrastructure hosted on Microsoft cloud services.
The research states "the technique was most recently used in an attack against an organization in Ukraine, where a previously undocumented piece of malware used the Graph API to leverage Microsoft OneDrive for C&C purposes."
The research can be found here:
Encore: Richard Clarke: From presidential inspiration to cybersecurity policy pioneer. [Policy] [Career Notes]
Encore: Welcome to New York, it's been waitin' for you. [Research Saturday]
Deep dive into the 2024 Incident Response Report with Unit 42's Michael "Siko" Sikorski [Threat Vector]
Encore: The curious case of the missing IcedID. [Only Malware in the Building]
The Supreme Court is bringing a judicial shakeup.
Take a trip down regreSSHion lane.
A swift fix for a serious router bug.
The current state of IAM: A Rick-the-toolman episode.
Encore: Carole Theriault: Constantly learning new things. [Media] [Career Notes]
APT36's cyber blitz on India. [Research Saturday]
TeamViewer and APT29 go toe to toe.
Solution Spotlight: Progress on the National Cyber Workforce and Education Strategy. [Special Edition]
E-commerce or E-spying?
2024 Cyber Talent Study by N2K and WiCyS. [Special Edition]
LockBit picks a brawl with banks.
U.S. and China dance the telecom tango.
The claim heard ‘round the world.
Encore: Sal Aurigemma: How things work. [Education] [Career Notes]
Piercing the through the fog. [Research Saturday]
U.S. tightens the cybersecurity belt.
Create your
podcast in
minutes
It is Free
The WAN Show
The 404 Media Podcast
Babbage from The Economist
Cyber Security Headlines
Cybersecurity Today