Hot Topics

azure

Satya Nadella and President Xi Jinping

‘China’ Azure Breach: MUCH Worse Than Microsoft Said

| | Active Directory, Authentication, azure, Azure Active Directory, Azure AD, Entra ID, Exchange, Microsoft, Microsoft Azure, Microsoft Azure Active Directory, Microsoft Azure Security, OpenID, Outlook.com, SB Blogwatch, Storm-0558, Wiz
Storm-0558 Breaks: Satya and Pooh, sitting in a tree, K.I.S.S.I.N.G ...
Security Boulevard
Microsoft Lost Its Keys, Voice Cloning Scams, The Biden-Harris Cybersecurity Labeling Program

Microsoft Lost Its Keys, Voice Cloning Scams, The Biden-Harris Cybersecurity Labeling Program

| | azure, Biden-Harris, china, Cyber Security, Cybersecurity, Cybersecurity Labeling Program, Data breach, Data Privacy, Digital Privacy, Episodes, Influencer, Information Security, Infosec, Mia Dio, Microsoft, phone scams, Podcast, Podcasts, Privacy, Scams, security, security breach, smart devices, technology, TikTok, Voice Cloning, Voice Cloning App, Weekly Edition, White House
In this episode, we discuss the recent Microsoft security breach where China-backed hackers gained access to numerous email inboxes, including those of several federal government agencies, using a stolen Microsoft signing key ...
Shared Security Podcast
Aligning an Organization’s Attack Surface to Detection Surface is Key to Adversary Defense in Today’s Cloud Era

Aligning an Organization’s Attack Surface to Detection Surface is Key to Adversary Defense in Today’s Cloud Era

| | Anomoly Detection, aws, AWS CloudTrail, azure, Blog, Cloud Security, CloudTrail, Detection Surface, Extended Detection and Response, Flow Logs, log data, multi-cloud, Network Detection and Response, Third Wave AI, threat detection, Uncategorized
With the Cloud Era, the IT asset estate has expanded, and there is a diverse set of attack surfaces to defend. The term "attack surface" describes the growing IT asset estate, but ...
MixMode
What is Tier Zero — Part 1

What is Tier Zero — Part 1

| | Active Directory, azure, research, security-boundaries, zerotier
What is Tier Zero — Part 1Tier Zero is a crucial group of assets in Active Directory (AD) and Azure. Its purpose is to protect the most critical components by creating a security boundary and ...
Posts By SpecterOps Team Members - Medium
7

Microsoft Repeatedly Burned in ‘Layer 7’ DDoS

| | Anonymous, Anonymous Hacking Collective, Anonymous Sudan, Application DDoS, application-layer DDoS attacks, azure, Azure cloud, Cloud DDoS, cloud outage, ddos, DDoS attack, DDoS attacks, Downtime and outages, killnet, Microsoft, Microsoft 365, Microsoft 365 outage, Microsoft 365 service outage alert, Microsoft Azure, Microsoft Azure Security, Microsoft Office 365, office 365, Office 365 Cloud Security, Office 365 Security, outage, outages, SB Blogwatch, Storm-1359
Unlucky number: Time and again this month, “Russian” hackers bring down Microsoft clouds ...
Security Boulevard
Cyera AWS logs Druva vulnerabilities eBay cyberstalking

Cyera Taps Microsoft OpenAI Service to Improve Data Security

| | azure, Compliance, Cyera, Microsoft, OpenAI, policy
Cyera this week revealed it integrated its namesake data security platform with the Microsoft Azure OpenAI cloud service to enable organizations to apply cybersecurity, privacy and compliance policy more consistently. Ari Weil, ...
Security Boulevard
internet, security, cloud internet, vulnerabilites, organizations, DNSSEC, GoDaddy cloud network, security

Comparing Cloud Providers’ Shared Responsibility Models

| | aws, azure, Cloud Security, google cloud, Shared Responsibility Model
More and more enterprises are becoming multi-cloud. And when evaluating cloud service providers (CSPs) for different needs, one important factor is security. Yet, CSPs aren’t responsible for securing everything—depending on the component ...
Security Boulevard
When Good APIs Go Bad: Uncovering 3 Azure API Management Vulnerabilities

When Good APIs Go Bad: Uncovering 3 Azure API Management Vulnerabilities

| | azure
Learn how now-patched Azure API Management service vulnerabilities revealed by the Ermetic research team enabled malicious actions The post When Good APIs Go Bad: Uncovering 3 Azure API Management Vulnerabilities appeared first ...
Ermetic
Surprise! US DoD Server Had no Password — 3TB of Sensitive Data Leaked

Surprise! US DoD Server Had no Password — 3TB of Sensitive Data Leaked

| | azure, Azure cloud, Azure Government Cloud, defense department, Department of Defense, DoD, email, Microsoft, Microsoft Azure, Microsoft Azure Security, pentagon, SB Blogwatch, U.S. Department of Defense, United States Department of Defense, US DOD, USSOCOM
Sensitive military data found on unprotected Microsoft Azure server. Defense Department email store left insecure for at least 11 days ...
Security Boulevard
Abusing Azure App Service Managed Identity Assignments

Abusing Azure App Service Managed Identity Assignments

| | azure, BloodHound, bloodhound-enterprise, cloud computing, Cybersecurity
IntroAzure App Service is a Platform-as-a-Service product that promises to improve web application deployment, hosting, availability, and security. Web Apps hosted by Azure App Service are organized into Azure App Service Plans, ...
Posts By SpecterOps Team Members - Medium
Load more