Dick O'Brien from Symantec Threat Hunter team is discussing their research on “Graph: Growing number of threats leveraging Microsoft API.” The team observed an increasing number of threats that have begun to leverage the Microsoft Graph API, usually to facilitate communications with command-and-control (C&C) infrastructure hosted on Microsoft cloud services.
The research states "the technique was most recently used in an attack against an organization in Ukraine, where a previously undocumented piece of malware used the Graph API to leverage Microsoft OneDrive for C&C purposes."
The research can be found here:
Another day, another Blizzard attack.
The fight against exploiting Americans.
The mother of all data breaches.
Midnight Blizzard brings the storm.
Encore: Matt Devost: Solving hard problems and pursuing your passions. [CEO] [Career Notes]
Two viewpoints on the National Cybersecurity Strategy. [Special Edition]
A firewall wake up call. [Research Saturday]
New malware, new threats.
A credential dump hits the online underground.
Exploring the cosmic frontier: Unveiling the future of space law. [Caveat]
Maximum severity vulnerability needs critical updates.
Vulnerabilities and security risks.
Putting a dent in the cybersecurity workforce gap. [Special Edition]
Encore: Examining the current state of security orchestration. [CyberWire-X]
Encore: Kathleen Booth: Get your foot in the door and prove your worth. [Marketing] [Career Notes]
Dual Russian cyber gangs hit 23 companies. [Research Saturday]
Casting a wider hiring net.
Unveiling the Shadow Strike: A zero-day assault on Ivanti VPN users.
A pivotal global menace.
Swatting on the rise.
Create your
podcast in
minutes
It is Free
The WAN Show
The 404 Media Podcast
Cyber Security Headlines
Babbage from The Economist
Cybersecurity Today