top of page


Russian hacker group hijacks ADFS authentication process
Microsoft documents a novel authentication bypass technique used by russian Cozy Bear threat actor group.
Sep 1, 2022


Regulating cyber security and privacy - not so easy
With destructive cyber attacks at an all time high, pressures for regulation are following suit. But don't expect too much.
Aug 31, 2022


Malicious data exfiltration using AWS S3 Replication Service
Implications for threat hunters: update of replication rules is a clue that data exfiltration may silently be occurring in the environment.
Aug 30, 2022


Phishing URLs increasingly hosted on SaaS platforms
Legitimate SaaS platforms are increasingly used for phishing links distribution, a relatively novel evasion technique.
Aug 28, 2022


Growing cyber attacks on healthcare organizations
Heavily digitized healthcare is especially at risk since it contains so much sensitive data, including patient records.
Aug 26, 2022


2022 DevSecOps Survey - Security is the top concern
Mixed messages from the new GitLab DevSecOps Survey 2022: toolchain sprawl and limited budgets, but also wider usage of SAST and DAST tools.
Aug 25, 2022


API related security incidents - a growing concern
The new Postman annual State of the API Report highlights the risks of programmatic integration via APIs
Aug 24, 2022


Phishers now have multiple options to bypass multifactor authentication
From pass-the-cookie attacks to adversary-in-the-middle (AiTM) schemes, bypassing MFA is becoming more frequent. There are ways to defend.
Aug 23, 2022


Ransomware variants nearly double in six months
And a sharp rise in wiper malware - notes from the new FortiGuard Labs report covering the first 6 months of 2022.
Aug 22, 2022
bottom of page