Storm-2949 actor targets Microsoft 365 and Azure environments
Storm-2949 initiates attacks by targeting users with privileged roles, such as IT personnel or senior leadership, using social engineering tactics to obtain ...
SC Media
20 articles
Microsoft to phase out SMS authentication for account recovery
Microsoft has announced it will begin phasing out SMS-based authentication and account recovery, citing it as a leading source of fraud.
Microsoft disrupts Fox Tempest malware-signing service
Fox Tempest operated a platform called signspace[.]cloud, which allowed threat actors to obtain short-lived Microsoft-issued certificates via Artifact Signing.
Microsoft addresses Windows Update failures in restricted environments
The failures occur in environments with strict network limitations, including air-gapped systems and heavily firewalled networks.
Major U.S. telecom companies form new cybersecurity information sharing group
The C2 ISAC, founded by AT&T, Charter, Comcast, Cox, Lumen, T-Mobile, Verizon, and Zayo, aims to foster more candid information exchange than previously ...
Poland directs officials to cease Signal use amid cyberattack concerns
The cyberattacks did not compromise Signal's encryption but instead relied on social engineering and account takeover tactics.
Darwinium updates mobile SDKs to detect in-session fraud and account farming
The updated SDKs are designed for banks, payment providers, and digital businesses facing sophisticated fraud that occurs after initial authentication.
Sola Security launches Lumina to reduce security alert noise
Lumina aims to solve the persistent problem of too many cybersecurity tools generating excessive noise, with the average enterprise using 83 tools.
Verizon DBIR 2026: Vulnerability exploits top initial access as patching coverage falls
The report also highlighted ransomware trends and the evolving role of AI in breaches.
Shift to Prevention and Enforcement as We Repeat Security Mistakes With AI - Rob Allen - BSW #448
Torq acquires Jit.io to enhance AI-driven security operations
Jit.io, founded in 2021, initially offered a security-as-code platform for developers, consolidating various application security and DevSecOps tools.
CISA contractor's public GitHub repo exposed sensitive government credentials
The repository, named "Private-CISA" and maintained by contractor Nightwing, exposed AWS administrative credentials, access keys, tokens, plaintext usernames...
My Mother the Car, AI Slop, Nginx, Polyscope, Drupal, , GitHub, Aaran Leyland... - SWN #582
SASE manages your network access, but who manages your SASE?
SASE adoption is easier than ever, but expertise gaps still create major security and access risks.
Universal Robots patches critical 9.8 flaw in ‘cobots’ OS
Critical flaw in Universal Robots cobots could let attackers hijack production systems remotely.
Attack Surface Management Explained: Why You Don’t Know What You Own - WC #1
GitHub Actions workflow compromised to steal CI/CD credentials
The attack involves an "imposter commit" strategy where all existing tags in the repository were altered to point to a malicious commit.
A 6-step guide for responding to the Foxconn ransomware/supply chain incident
Here’s how to develop a more effective response to supply chain attacks.
Edera and Minimus partner for end-to-end container security
The partnership addresses the growing threat of AI-powered vulnerability discovery, which is accelerating the pace at which adversaries can exploit open-sour...
Iran suspected in breaching automatic tank gauges at US gas stations
The automatic tank gauge systems were reportedly exposed online without passwords.