Dick O'Brien from Symantec Threat Hunter team is discussing their research on “Graph: Growing number of threats leveraging Microsoft API.” The team observed an increasing number of threats that have begun to leverage the Microsoft Graph API, usually to facilitate communications with command-and-control (C&C) infrastructure hosted on Microsoft cloud services.
The research states "the technique was most recently used in an attack against an organization in Ukraine, where a previously undocumented piece of malware used the Graph API to leverage Microsoft OneDrive for C&C purposes."
The research can be found here:
Encore: Pattie Dillon: Take the leap. [Anti-fraud] [Career Notes]
The return of a malware menace. [Research Saturday]
WhatsApp's legal triumph cracks the spyware vault.
Iran's cyber quest in Middle Eastern aerospace.
Protecting American data.
Out with the old, in with the new.
LockBit reloaded: Unveiling the next chapter in cybercrime.
Encore: Chris Cochran: Rely on your strengths in the areas of the unknown. [Engineering] [Career Notes]
Web host havoc: Unveiling the Manic Menagerie campaign. [Research Saturday]
Crackdown on privacy leads to a multi-million dollar fine.
AT&T outage leaves major cities offline.
Anchoring security for US ports.
The reign of digital terror ends.
AWS in Orbit: Leveraging generative AI to do more at the rugged space edge with AWS. [T-Minus]
What’s a CNAPP: Cloud-Native Application Protection Platform? [CyberWire-X]
Encore: Dominique Shelton Leipzig: No matter the statistics, even if against the odds, focus on what you want. [Legal] [Career Notes]
Hackers come hopping back. [Research Saturday]
FBI initiates router revolution.
An AI arms race.
It’s always DNS, but that may just be FUD.
Create your
podcast in
minutes
It is Free
The WAN Show
The 404 Media Podcast
Babbage from The Economist
Cyber Security Headlines
Cybersecurity Today