Wednesday, June 25, 2025

Security Boulevard Logo

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
    • News Releases
  • Security Creators Network
    • Latest Posts
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming Webinars
    • Calendar View
    • On-Demand Webinars
  • Events
    • Upcoming Events
    • On-Demand Events
  • Sponsored Content
  • Chat
    • Security Boulevard Chat
    • Marketing InSecurity Podcast
    • Techstrong.tv Podcast
    • TechstrongTV - Twitch
  • Library
  • Related Sites
    • Techstrong Group
    • Cloud Native Now
    • DevOps.com
    • Security Boulevard
    • Techstrong Research
    • Techstrong TV
    • Techstrong.tv Podcast
    • Techstrong.tv - Twitch
    • Devops Chat
    • DevOps Dozen
    • DevOps TV
  • Media Kit
  • About
  • Sponsor

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
  • Humor

Account Compromise

™

Securing Against OAuth Exploitation: A Step-By-Step Guide

Farah Iyer | December 19, 2023 | Account Compromise, FEATURED, Microsoft 365 security, Oauth Application Abuse, SaaS Security, SaaS security posture, Security Guidance, Session hijacking, SSPM
Recent findings from Microsoft Threat Intelligence reveal a concerning trend: threat actors exploiting vulnerabilities in Microsoft 365 and Azure environments to execute attacks, with a focus on OAuth application abuse. In this ...
Obsidian Security
SaaS Ransomware Observed in the Wild for Sharepoint in Microsoft 365

SaaS Ransomware Observed in the Wild for Sharepoint in Microsoft 365

Emile Antone | June 6, 2023 | Account Compromise, FEATURED, Microsoft 365, SaaS incident response, SaaS Security, Security Advisories
Background Obsidian’s Threat Research team has observed a SaaS ransomware attack against a company’s Sharepoint Online (Microsoft 365) without using a compromised endpoint. Our team and product were leveraged post-compromise to determine ...
Obsidian Security
Five Types of Business Email Compromise Attacks and How to Prevent Them

Five Types of Business Email Compromise Attacks and How to Prevent Them

Barry Strauss | April 12, 2023 | Account Compromise, attorney impersonation, bec, BEC attacks, business email compromise, CEO fraud, data exfiltration, fake invoice schemes, FBI
In a recent blog, we cited the Federal Bureau of Investigation (FBI) and its Internet Crime Complaint Center (IC3) latest 2022 report, which emphasized a steep and significant rise in Business Email Compromise ...
SlashNext
The Undeniable Effectiveness of Password Spray

The Undeniable Effectiveness of Password Spray

Naveen Sunkavally | October 20, 2022 | Account Compromise, Blog, Customer Success, MITRE, password spray, passwords
One of the most effective techniques NodeZero employs for initial access is password spray. It’s a primitive technique, basically guessing passwords, and when it works it feels like magic. Yet we see ...
Horizon3.ai
Beef up your Cyber Protection with Multi Factor Authentication

Beef up your Cyber Protection with Multi Factor Authentication

Deepti Sachdeva | September 13, 2022 | Account Compromise, CERT-In, compliances, Cybersecurity, Data breach, MFA, Multi-Factor Authentication, two factor authentication, VAPT
“When it comes to security, Two-Factor Authentication proves to be a treasury full of gold.” The severity and frequency of ransomware attacks and other cybercrimes have exploded in the last few years ...
Kratikal Blogs

Spotting SaaS Application Vulnerabilities

Emile Antone | August 31, 2022 | Account Compromise, FEATURED, SaaS Security, saas supply chain risk, SBN News
This blog is reposted from an article originally published on August 19, 2022 by Michael Novinson and ISMG. Listen to the full interview here. Obsidian Security has in recent months invested in ...
Obsidian Security
Responding to the Twilio SMS Incident with Obsidian

Responding to the Twilio SMS Incident with Obsidian

Emile Antone | August 25, 2022 | Account Compromise, Phishing, SaaS Security, Security Advisories, SSPM, Twilio
Earlier this month, Twilio shared publicly that they had been targeted with an ongoing social-engineering phishing scam via SMS. This is the latest in a string of recent sophisticated breaches gaining access ...
Obsidian Security
Modern Threat Detection: Making Impossible Travel Possible

Modern Threat Detection: Making Impossible Travel Possible

Emile Antone | February 16, 2022 | Account Compromise, Data Science & AI, impossible travel, machine learning, Microsoft 365 impossible travel, SaaS Security
This blog was co-authored by Obsidian Senior Security Researcher Jody Forness and Machine Learning Engineer Marcus McCurdy. The security industry can be rife with vendors who tout the advanced machine learning and ...
Obsidian Security

Insider Threat Personas: Who is Responsible for Insider Attacks?

Peter Varhol | September 20, 2021 | Account Compromise, Blog, insider threat
Hello week four of National Insider Threat Awareness month! This week we’re talking about insider... The post Insider Threat Personas: Who is Responsible for Insider Attacks? appeared first on Gurucul ...
Blog – Gurucul

Do You Think Your Healthcare Data Is Safe?

Jane Grafton | May 18, 2021 | Account Compromise, Blog, healthcare, User and Entity Behavior Analytics (UEBA)
The HIPAA Journal is reporting that in March of 2021, we saw a 38.8% increase... The post Do You Think Your Healthcare Data Is Safe? appeared first on Gurucul ...
Blog – Gurucul
Load more Loading...

Techstrong TV

Click full-screen to enable volume control
Watch latest episodes and shows

Tech Field Day Events

Upcoming Webinars

Securing Vibe Coding: Addressing the Security Challenges of AI-Generated Code
How to Spot and Stop Security Risks From Unmanaged AI Tools

Podcast

Listen to all of our podcasts

Press Releases

GoPlus's Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On

Subscribe to our Newsletters

ThreatLocker

Most Read on the Boulevard

16 Billion Leaked Records May Not Be a New Breach, But They’re a Threat
Scattered Spider Targets Aflac, Other Insurance Companies
AWS Raises Expertise Bar for MSSP Partners
Heightened Cyber Threat from Iran Sparks Urgent Calls for Vigilance and Mitigation
WhatsApp BANNED by House Security Goons — But Why?
Your passwords are everywhere: What the massive 16 billion login leak means for you
The $4.88 Million Question: Why Password-Based Breaches Are Getting More Expensive
Will AI Replace You — or Promote You? How to Stay Ahead
LinuxFest Northwest: The First Black Software Engineer in America: Technology and Race
JWT Security in 2025: Critical Vulnerabilities Every B2B SaaS Company Must Know

Industry Spotlight

WhatsApp BANNED by House Security Goons — But Why?
Application Security Cloud Security Cyberlaw Cybersecurity Data Privacy Data Security DevOps Endpoint Featured Governance, Risk & Compliance Humor Incident Response Industry Spotlight Mobile Security Most Read This Week Network Security News Popular Post Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threats & Breaches Vulnerabilities 

WhatsApp BANNED by House Security Goons — But Why?

June 24, 2025 Richi Jennings | Yesterday 0
Scattered Spider Targets Aflac, Other Insurance Companies
Cloud Security Cybersecurity Data Privacy Data Security Featured Identity & Access Industry Spotlight Mobile Security Network Security News Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Social Engineering Spotlight Threat Intelligence 

Scattered Spider Targets Aflac, Other Insurance Companies

June 22, 2025 Jeffrey Burt | 3 days ago 0
US Pig Butchering Victims ‘Will’ Get Refunds — Feds Seize $225M Cryptocurrency
Analytics & Intelligence Blockchain Cyberlaw Cybersecurity Data Privacy Digital Currency Featured Governance, Risk & Compliance Humor Incident Response Industry Spotlight Mobile Security Most Read This Week Network Security News Popular Post Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Social Engineering Spotlight Threat Intelligence Threats & Breaches 

US Pig Butchering Victims ‘Will’ Get Refunds — Feds Seize $225M Cryptocurrency

June 20, 2025 Richi Jennings | Jun 20 0

Top Stories

Fortanix Adds Dashboard to Better Prioritize Remediation Efforts for PQC Era
Cybersecurity Featured News Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight 

Fortanix Adds Dashboard to Better Prioritize Remediation Efforts for PQC Era

June 25, 2025 Michael Vizard | 7 hours ago 0
LapDogs Campaign Shows Chinese Groups’ Growing Use of ORB Networks
Cloud Security Cybersecurity Data Privacy Data Security Endpoint Featured Malware Network Security News Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threat Intelligence Threats & Breaches 

LapDogs Campaign Shows Chinese Groups’ Growing Use of ORB Networks

June 25, 2025 Jeffrey Burt | 9 hours ago 0
DataKrypto and Tumeryk Join Forces to Deliver World’s First Secure Encrypted Guardrails for AI LLMs and SLMs
AI and Machine Learning in Security AI and ML in Security Cybersecurity Featured Governance, Risk & Compliance News Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight 

DataKrypto and Tumeryk Join Forces to Deliver World’s First Secure Encrypted Guardrails for AI LLMs and SLMs

June 24, 2025 John D. Boyle | Yesterday 0

Download Free eBook

The Dangers of Open Source Software and Best Practices for Securing Code

Security Boulevard Logo White

DMCA

Join the Community

  • Add your blog to Security Creators Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: [email protected]

Useful Links

  • About
  • Media Kit
  • Sponsor Info
  • Copyright
  • TOS
  • DMCA Compliance Statement
  • Privacy Policy

Related Sites

  • Techstrong Group
  • Cloud Native Now
  • DevOps.com
  • Digital CxO
  • Techstrong Research
  • Techstrong TV
  • Techstrong.tv Podcast
  • DevOps Chat
  • DevOps Dozen
  • DevOps TV
Powered by Techstrong Group
Copyright © 2025 Techstrong Group Inc. All rights reserved.
×