Hot Topics

SolarWinds Attacks

NOBELIUM Demonstrates  Why Microsoft Is the Weakest Link

NOBELIUM Demonstrates  Why Microsoft Is the Weakest Link

| | azure, cyberattack, cybercrime, E5 License, Exploits, Lior Blog, Lior Div, Microsoft, microsoft defender, Microsoft Exchange, NOBELIUM, RansomOps, Ransomware, Russia, SolarWinds Attacks, Vulnerabilities, vulnerability
Microsoft platforms and products are ubiquitous. Government agencies and companies of all sizes and industries around the world rely on Microsoft software to get things done. They are also riddled with security ...
Blog
Microsoft Publishes Veiled Mea Culpa Disguised as Research

Microsoft Publishes Veiled Mea Culpa Disguised as Research

| | E5 License, EDR, endpoint detection and response, Endpoint Protection Platform, EPP, Exploits, Extended Detection and Response, Microsoft, Microsoft Exchange, Nation-state Attack, SolarWinds Attacks, Unified Endpoint Security, Vulnerabilities, vulnerability, XDR
The Microsoft Threat Intelligence Center (MSTIC) shared a report warning that NOBELIUM—the threat actor behind the SolarWinds attacks—is targeting delegated administrative privileges as part of a larger malicious campaign. Microsoft cautions that ...
Blog
Microsoft’s Failure to Prioritize Security Puts Everyone at Risk

Microsoft’s Failure to Prioritize Security Puts Everyone at Risk

| | Anti-Ransomware, antivirus, Cybereason Anti-Ransomware Solution, EDR, Endpoint Controls, endpoint detection and response, Endpoint Protection Platform, enterprise security, EPP, Exploits, Extended Detection and Response, Hafnium, Microsoft, microsoft defender, Microsoft Exchange, Microsoft Hypertext Markup Language, Network Security, Next Generation Antivirus, ngav, ProxyLogon, ProxyShell, SolarWinds Attacks, Unified Endpoint Security, Vulnerabilities, vulnerability
It has been a very busy year when it comes to Microsoft zero-day attacks. According to KrebsOnSecurity, May is the only month in 2021 that Microsoft didn’t release a patch to defend ...
Blog
1,460-Day Old Known Vulnerability Catches Microsoft Off Guard

1,460-Day Old Known Vulnerability Catches Microsoft Off Guard

| | AI, Artificial Intelligence, Azurescape, Cybereason Defense Platform, Cybereason XDR Platform, EDR, Endpoint Controls, endpoint detection and response, Endpoint Protection Platform, Exploits, Hafnium, Lior Blog, machine learning, Microsoft, Microsoft Exchange, Microsoft Hypertext Markup Language, MSHTML, Next Generation Antivirus, ngav, PrintNightmare, SolarWinds Attacks, Unified Endpoint Security, Vulnerabilities, vulnerability, XDR, zero-day
Vulnerabilities are a fact of life. I started my career in cybersecurity finding and exploiting those vulnerabilities to conduct nation-state offensive operations. I understand the simple reality that there is no such ...
Blog
Azurescape Vulnerability: More Evidence that  Microsoft Should Leave Security to the Experts

Azurescape Vulnerability: More Evidence that  Microsoft Should Leave Security to the Experts

| | Azurescape, cloud computing, Cybersecurity, EDR, Endpoint Controls, endpoint detection and response, Endpoint Protection Platform, EPP, Extended Detection and Response, Hafnium, Microsoft, Microsoft Exchange, Privilege Escalation, security, Software Security, SolarWinds Attacks, Unified Endpoint Security
It’s been a busy couple weeks for Microsoft—and not in a good way. Following the news that a configuration error left Azure cloud customer data exposed to potential compromise, and a security ...
Blog
Microsoft Zero-Day-of-the-Month Club

Microsoft Zero-Day-of-the-Month Club

| | cyberattack, Exploits, Hafnium, Internet Explorer, Lior Blog, Microsoft, Microsoft Exchange, MSHTML, PrintNightmare, SolarWinds Attacks, Vulnerabilities, vulnerability, zero-day
When it comes to zero day attacks against Microsoft products, I often feel like Bill Murray’s character in the movie Groundhog Day. It seems like I keep waking up to the same ...
Blog
CISO Roundtable: Ransomware Attacks and the True Cost to Business

CISO Roundtable: Ransomware Attacks and the True Cost to Business

| | Anti-Ransomware, CISO, CISO Stories Podcast, Conti, Cybersecurity, Cybersecurity Collaborative, Darkside, endpoint detection and response, Endpoint Protection Platform, enterprise security, Hafnium, Insights, Malware, Microsoft Exchange, Network Security, Podcast, Ransomware, rEvil, Russia, security policy, SolarWinds Attacks, Unified Endpoint Security, Webinars, WebinarsCat
A recent global research report conducted by Cybereason, titled Ransomware: The True Cost to Business, revealed that the vast majority of organizations that have suffered a ransomware attack have experienced significant impact ...
Blog
Summer Webinar Series with CSO Sam Curry

Summer Webinar Series with CSO Sam Curry

| | Anti-Ransomware, Cybereason Anti-Ransomware Solution, Cybereason XDR Platform, Darkside, EDR, endpoint detection and response, Endpoint Protection Platform, enterprise security, EPP, Extended Detection and Response, RansomOps, SolarWinds Attacks, Supply Chain Attacks, Unified Endpoint Security, Webinars, WebinarsCat, XDR
Join Cybereason CSO Sam Curry for this webinar series where he revisits some of the cybersecurity highlights of the first half of 2021, from the SolarWinds supply chain attacks to DarkSide and ...
Blog
Deja Vu: What Do NotPetya and SolarWinds Have in Common?

Deja Vu: What Do NotPetya and SolarWinds Have in Common?

| | Advanced persistent threat, APT, Infosec, NotPetya, Operation-Centric Security, Ransomware, risk management, Russia, security, Security Controls, SolarWinds Attacks
As I was waking up in Boston on the morning of June 27, 2017, reports were being shared on social media that an electric power supplier in Ukraine was hit by a ...
Blog
SolarWinds Threat Actors Behind New Email Attack Campaign

SolarWinds Threat Actors Behind New Email Attack Campaign

| | Advanced persistent threat, APT, Cobalt Strike Beacon, Constant Contact, Cybersecurity, endpoint detection and response, Endpoint Protection Platform, Espionage, Indicators of Behavior, Infosec, iob, Malware, security, SolarWinds Attacks, TTP, Unified Endpoint Security, USAID
The threat actors behind last year’s SolarWinds supply chain attack have launched a new email attack campaign aimed at organizations around the world. This attack wave attracted the attention of the Microsoft ...
Blog
Load more