Dick O'Brien from Symantec Threat Hunter team is discussing their research on “Graph: Growing number of threats leveraging Microsoft API.” The team observed an increasing number of threats that have begun to leverage the Microsoft Graph API, usually to facilitate communications with command-and-control (C&C) infrastructure hosted on Microsoft cloud services.
The research states "the technique was most recently used in an attack against an organization in Ukraine, where a previously undocumented piece of malware used the Graph API to leverage Microsoft OneDrive for C&C purposes."
The research can be found here:
Can connected cars jeopardize national security?
Resilience. (CSO Perspectives)
Kyla Guru: You are a key piece to our national security. [Education] [Career Notes]
Steve Blank, national security, and the dilemma of technology disruption. (Part 1 of 2)
Hook, line, and sinker. [Research Saturday]
They really are watching what we watch.
Derailing the Raptor Train botnet.
High-stakes sabotage.
One small step for scammers.
Agencies warn of voter data deception.
Breaking the information sharing barrier.
Ben Yelin: A detour could be a sliding door moment. [Policy] [Career Notes]
Spamageddon: Xeon Sender’s cloudy SMS attack revealed! [Research Saturday]
Mini-breach, mega-hype.
UK’s newest cybersecurity MVPs.
A Patch Tuesday overload.
A CSO's 9/11 Story: CSO Perspectives Bonus.
Solution Spotlight: Mary Haigh, Global CISO of BAE Systems, on building a cybersecurity team.
Stealth, command, exfiltrate: The three-headed cyber dragon of Crimson Palace.
A ticking clock to exploitation.
Create your
podcast in
minutes
It is Free
AI Deep Dive
The WAN Show
Cyber Security Headlines
Techmeme Ride Home
Cybersecurity Today