-
CISA’s take on Microsoft’s Storm-0558 incident
“Microsoft’s ubiquitous and critical products, which underpin essential services that support national security, the foundations of our economy, and public health and safety, require the company to demonstrate the highest standards of security, accountability, and transparency. “ A critical statement made by the Cybersecurity and Infrastructure Security Agency’s Cyber Safety Review board, regarding their review of the…
-
Dragos Cyber ‘breach’
Industrial cybersecurity company Dragos today disclosed what it describes as a “cybersecurity event” after a known cybercrime gang attempted to breach its defenses and infiltrate the internal network to encrypt devices. – Source: BleepingComputers
-
OneNote Malware Delivergy
Interesting write up by Micah Babinski regarding the simplicity of malware delivery to unsuspecting persons using offline OneNote files – .one https://micahbabinski.medium.com/detecting-onenote-one-malware-delivery-407e9321ecf0
-
InverseCos: Detecting Fake Events in Azure Sign-in Logs
Write up by Lina L. about fake sign-in activity that can be generated by TA’s in Azure tenancies. https://www.inversecos.com/2023/01/detecting-fake-events-in-azure-sign-in.html?m=1
NPD4n6: Nicks DFIR blog 