Tag: mfa

Google Cloud Security Threat Horizons Report #11 Is Out!

Jan 22, 2025 11:22 PM

Tags: access, api, apt, attack, authentication, breach, business, cloud, corporate, credentials, cybersecurity, data, detection, exploit, extortion, google, identity, intelligence, leak, mfa, password, phishing, ransomware, service, tactics, theft, threat, tool, vulnerability

This is my completely informal, uncertified, unreviewed and otherwise completely unofficial blog inspired by my reading of our next Threat Horizons Report, #11 (full version) that we just released (the official blog for #1 report, my unofficial blogs for #2, #3, #4, #5, #6, #7, #8, #9 and #10). My favorite quotes from the report follow below:…
The Quiet Rise of the ‘API Tsunami’

Jan 22, 2025 8:22 PM

Tags: access, api, attack, authentication, breach, business, cloud, compliance, control, data, data-breach, encryption, endpoint, finance, GDPR, healthcare, HIPAA, infrastructure, law, leak, mail, malicious, mfa, mobile, monitoring, network, privacy, programming, regulation, risk, security-incident, service, threat, tool, unauthorized, update, vulnerability

As enterprises increasingly adopt cloud-native architectures, microservices, and third-party integrations, the number of Application Programming Interfaces (APIs) has surged, creating an “API tsunami” in an organization’s infrastructure that threatens to overwhelm traditional management practices. As digital services proliferate, so does the development of APIs, which allow various applications to communicate or integrate with each other…
Tycoon 2FA Phishing Kit Upgraded to Bypass Security Measures

Jan 22, 2025 6:22 PM

Tags: 2fa, mfa, phishing, threat

Threat researchers analyzed the updated Tycoon 2FA phishing kit, which bypasses MFA First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/tycoon-2fa-phishing-kit-upgraded/
Mandatory MFA, Biometrics Make Headway in Middle East, Africa

Jan 22, 2025 4:22 PM

Tags: identity, mfa, middle-east, technology

Despite lagging in technology adoption, African and Middle Eastern organizations are catching up, driven by smartphone acceptance and national identity systems. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/mfa-biometrics-make-headway-middle-east-africa
‘Sneaky Log’ Microsoft Spoofing Scheme Sidesteps Two-Factor Security

Jan 21, 2025 11:22 PM

Tags: authentication, mfa, microsoft, phishing, service

The phishing-as-a-service kit from Sneaky Log creates fake authentication pages to farm account information, including two-factor security codes. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/sneaky-log-microsoft-phishing-2fa/
Yubico Warns of 2FA Security Flaw in pam-u2f for Linux and macOS Users

Jan 20, 2025 1:22 PM

Tags: 2fa, advisory, authentication, cve, fido, flaw, linux, macOS, mfa, open-source, risk, software, threat, vulnerability

Yubico has released a security advisory, YSA-2025-01, which highlighted a vulnerability within the software module that supports two-factor authentication (2FA) for Linux and macOS platforms. This issue, tracked as CVE-2025-23013, allows for a partial 2FA bypass protections when using YubiKeys or other FIDO-compatible authenticators. The vulnerability poses a high-risk security threat and could potentially compromise…
Back to the Basics For 2025: Securing Your Business

Jan 18, 2025 1:22 AM

Tags: business, ciso, cloud, cybersecurity, mfa, service, training

Gary Perkins, CISO at CISO Global Cybersecurity may seem complex, but it boils down to consistent implementation of best practices. Disabling unnecessary services, securing cloud configurations, enforcing MFA, training employees, and adopting a proactive security mindset are crucial steps to safeguarding your business. In 2025, prioritize these basics to significantly reduce your exposure to threats……
Hotel chain ditches Google search for DuckDuckGo, ‘subjected to fraud attempts daily’

Jan 14, 2025 8:46 AM

Tags: apple, attack, authentication, browser, chrome, cloud, control, cybercrime, cybersecurity, data-breach, fraud, google, jobs, malware, mfa, monitoring, phishing, privacy, ransomware, risk, scam, service, tool, windows

At the end of 2021, Nordic Choice Hotels, now renamed Strawberry, was hit by a major ransomware attack that paralyzed operations for just over a week. Everything had to be done manually, says Martin Belak, who is responsible for the hotel chain’s technical security.”The receptionists worked with whiteboards to keep track of which rooms were…
Azure, Microsoft 365 MFA outage locks out users across regions

Jan 14, 2025 8:46 AM

Tags: mfa, microsoft

It’s fixed, mostly, after Europeans had a manic Monday First seen on theregister.com Jump to article: www.theregister.com/2025/01/13/azure_m365_outage/
Microsoft 365 MFA Outage Fixed

Jan 14, 2025 8:46 AM

Tags: access, authentication, login, mfa, microsoft, service

Microsoft confirmed an outage of its multi-factor authentication system impacting access to Microsoft 365, causing login failures and service disruption First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/mfa-disruption-impacted-access/
Microsoft Warns of MFA Issue Affecting Microsoft 365 users

Jan 13, 2025 1:26 PM

Tags: authentication, cyber, mfa, microsoft, service

Microsoft has issued a warning regarding an ongoing issue with Multi-Factor Authentication (MFA) that is impacting some Microsoft 365 (M365) users. The problem, which surfaced earlier today, is preventing affected users from accessing certain M365 applications, raising concerns for businesses and individuals who rely on these services for essential operations. Microsoft flagged the issue via…
Microsoft MFA outage blocking access to Microsoft 365 apps

Jan 13, 2025 12:26 PM

Tags: access, authentication, mfa, microsoft, office

Microsoft is investigating an ongoing Multi-Factor Authentication (MFA) outage that is blocking customers from accessing Microsoft 365 Office apps. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-mfa-outage-blocking-access-to-microsoft-365-apps/
8 Cyber Predictions for 2025: A CSO’s Perspective

Jan 10, 2025 1:18 AM

Tags: access, ai, attack, authentication, business, ceo, ciso, cloud, compliance, computing, control, credentials, cryptography, cyber, cyberattack, cybercrime, cybersecurity, data, defense, detection, encryption, exploit, extortion, firewall, framework, governance, group, hacker, hacking, healthcare, identity, intelligence, international, law, leak, malicious, mfa, microsoft, network, north-korea, organized, phishing, privacy, ransom, ransomware, regulation, risk, risk-management, service, social-engineering, software, strategy, supply-chain, theft, threat, tool, update, wifi, zero-trust

As we step into 2025, the cyberthreat landscape is once again more dynamic and challenging than the year before. In 2024, we witnessed a remarkable acceleration in cyberattacks of all types, many fueled by advancements in generative AI. For security leaders, the stakes are higher than ever. In this post, I’ll explore cyberthreat projections and…
HHS Proposes Mandating MFA, Data Encryption in HIPAA

Jan 8, 2025 9:19 PM

Tags: data, encryption, HIPAA, mfa

First seen on scworld.com Jump to article: www.scworld.com/news/hhs-proposes-mandating-mfa-data-encryption-in-hipaa
ADFS”Š”, “ŠLiving in the Legacy of DRS

Jan 7, 2025 6:18 PM

Tags: access, api, attack, authentication, breach, cloud, computer, container, control, credentials, data, data-breach, endpoint, group, identity, infosec, Internet, login, mfa, microsoft, network, phishing, powershell, service, windows

ADFS”Š”, “ŠLiving in the Legacy of DRS It’s no secret that Microsoft have been trying to move customers away from ADFS for a while. Short of slapping a “deprecated” label on it, every bit of documentation I come across eventually explains why Entra ID should now be used in place of ADFS. And yet”¦ we still encounter…
Proposed HIPAA Amendments Will Close Healthcare Security Gaps

Jan 3, 2025 3:19 PM

Tags: authentication, control, cybersecurity, healthcare, HIPAA, mfa, network, privacy, regulation, threat

The changes to the healthcare privacy regulation with technical controls such as network segmentation, multi-factor authentication, and encryption. The changes would strengthen cybersecurity protections for electronic health information and address evolving threats against healthcare entities. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/proposed-hipaa-amendments-close-healthcare-security-gaps
Secure by design vs by default which software development concept is better?

Jan 3, 2025 8:17 AM

Tags: access, api, application-security, attack, business, cisa, cloud, control, cyber, cybersecurity, data, data-breach, exploit, framework, guide, Hardware, infrastructure, malicious, mfa, nist, programming, resilience, risk, saas, security-incident, service, software, supply-chain, technology, threat, tool, update, vulnerability

As cybersecurity professionals, we need to know that the software products we acquire are safe and able to support or accommodate the procedures and tools we use to keep attackers at bay while performing their given functions.With attacks perennially on the rise and the software supply chain remaining as vulnerable as ever, there is momentum…
US soldier linked to Trump call log hack arrested in Texas

Jan 2, 2025 8:21 PM

Tags: at&t, attack, authentication, breach, business, cloud, control, cybersecurity, dark-web, data, data-breach, group, hacker, hacking, identity, jobs, mfa, military, password, phone, ransom, supply-chain, threat

Court documents unsealed Monday show that US authorities have arrested a 20-year-old soldier, Cameron John Wagenius, charged with two counts of selling or attempting to sell confidential phone records without the customer’s authorization.But behind the scant details provided in the charge sheet submitted to the US District Court for the Western District of Washington at…
Top 12 ways hackers broke into your systems in 2024

Dec 31, 2024 8:27 AM

Tags: access, adobe, ai, api, apt, attack, authentication, backdoor, breach, business, china, cloud, control, corporate, credentials, cve, cvss, cyber, cybercrime, cybersecurity, data, data-breach, defense, detection, email, endpoint, exploit, finance, flaw, fortinet, government, group, hacker, healthcare, identity, infection, injection, Internet, iran, ivanti, jobs, malicious, malware, mfa, microsoft, mitigation, mobile, moveIT, north-korea, okta, open-source, phishing, pypi, ransomware, rce, remote-code-execution, risk, russia, scam, software, sql, strategy, supply-chain, tactics, theft, tool, unauthorized, update, vpn, vulnerability, zero-day

In 2024, hackers had a field day finding sneaky ways into systems, from convincing phishing scams that played on human curiosity to brutal software flaws that exposed gaps in tech upkeep. It was a year of clever breaches, showing just how wide the gap is between user habits and security practices.”While every year brings new…
Best of 2024: ATT Says 110M Customers’ Data Leaked, Yep, it’s Snowflake Again

Dec 27, 2024 10:43 PM

Tags: data, data-breach, mfa

Should’ve used MFA: $T loses yet more customer data”, this time, from almost all of them. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/12/att-snowflake-breach-richixbw-2/
Data protection challenges abound as volumes surge and threats evolve

Dec 27, 2024 7:43 AM

Tags: access, ai, authentication, awareness, ciso, cloud, compliance, control, credentials, cryptography, cybersecurity, data, email, encryption, endpoint, firewall, framework, google, governance, guide, hacker, identity, intelligence, Internet, LLM, mfa, mobile, monitoring, network, office, phishing, phone, risk, risk-assessment, risk-management, saas, strategy, tactics, technology, theft, threat, tool, unauthorized, update, vulnerability

In the global digital economy, data is the most important asset organizations must protect from theft and damage. CISOs are fundamentally guardians of that asset, obligated to keep it secure and available to relevant users when and where they need it.”Every company has become a data company in this day and age; even if you’re…
The 2024 cyberwar playbook: Tricks used by nation-state actors

Dec 25, 2024 7:43 AM

Tags: access, ai, apt, at&t, attack, authentication, backdoor, blizzard, botnet, breach, china, cisa, cloud, control, credentials, cve, cvss, cyber, cybersecurity, data, ddos, defense, detection, email, espionage, exploit, flaw, fortinet, google, government, group, hacker, hacking, healthcare, india, infrastructure, iran, ivanti, linux, login, malicious, malware, mfa, microsoft, mobile, network, offense, office, open-source, password, phishing, powershell, remote-code-execution, router, russia, service, social-engineering, software, spear-phishing, spy, strategy, supply-chain, tactics, theft, threat, tool, unauthorized, update, vpn, vulnerability, warfare, windows, worm, zero-day

In 2024, nation-state cyber activity was off the charts, with Chinese, Russian, and Iranian actors leading the charge. Their campaigns weren’t just relentless, they were innovative, using a crafty mix of Tactics, Techniques, and Procedures (TTPs) to gain footholds, stay hidden, and spy-like pros.”There was definitely a continued and noted uptick in nation-state activity in…
7 biggest cybersecurity stories of 2024

Dec 24, 2024 10:44 AM

Tags: access, ai, alphv, at&t, attack, authentication, breach, business, china, cio, ciso, citrix, cloud, credentials, crowdstrike, crypto, cyber, cybercrime, cybersecurity, data, data-breach, deep-fake, detection, email, espionage, exploit, extortion, finance, google, government, group, hacking, healthcare, incident response, infection, insurance, intelligence, international, jobs, lockbit, malicious, malware, mandiant, mfa, microsoft, network, nis-2, north-korea, office, phishing, phone, privacy, ransomware, regulation, risk, risk-management, scam, service, software, strategy, tactics, technology, threat, ukraine, update, vulnerability, windows

Cybersecurity headlines were plenty this year, with several breaches, attacks, and mishaps drawing worldwide attention.But a few incidents in particular had far-reaching consequences, with the potential to reshape industry protections, shake up how vendors secure customers’ systems, or drive security leaders to reassess their strategies.Longer-term trends such as increased cybersecurity regulations and the impact of…
US order is a reminder that cloud platforms aren’t secure out of the box

Dec 20, 2024 11:43 PM

Tags: access, best-practice, breach, business, cisa, ciso, cloud, control, cyber, cybersecurity, defense, fedramp, google, government, guide, identity, incident, incident response, infrastructure, intelligence, international, login, mfa, microsoft, monitoring, network, risk, saas, service, software, tool

This week’s binding directive to US government departments to implement secure configurations in cloud applications, starting with Microsoft 365 (M365), is a reminder to all CISOs that cloud platforms, even from major providers, aren’t completely secure out of the box.”Cloud stuff is easy to manage, easy to deploy,” said Ed Dubrovsky, chief operating officer and…
CISA Urges Encrypted Messaging After Salt Typhoon Hack

Dec 20, 2024 12:42 PM

Tags: cisa, cybersecurity, infrastructure, mfa, phishing, switch

The US Cybersecurity and Infrastructure Security Agency recommended users turn on phishing-resistant MFA and switch to Signal-like apps for messaging First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/cisa-e2e-messaging-salt-typhoon/
A new ransomware regime is now targeting critical systems with weaker networks

Dec 18, 2024 1:42 PM

Tags: access, attack, authentication, breach, control, corporate, credentials, cybercrime, data, defense, exploit, extortion, finance, flaw, fortinet, group, infrastructure, law, lockbit, malware, mfa, network, ransomware, risk, tactics, usa, vmware, vpn, vulnerability, zyxel

The year 2024’s ransomware shake-up, fueled by law enforcement crackdowns on giants like LockBit, has shifted focus to critical operations, with major attacks this year hitting targets like Halliburton, TfL, and Arkansas water plant.A Dragos study for the third quarter of 2024 highlighted a surge in activity from new groups like RansomHub, Play, and Fog,…
Top 10 cybersecurity misconfigurations: Nail the setup to avoid attacks

Dec 17, 2024 7:44 AM

Tags: access, attack, authentication, awareness, blueteam, breach, cisa, cloud, computing, control, credentials, cyber, cybersecurity, data, data-breach, endpoint, exploit, extortion, firmware, incident response, infrastructure, intelligence, kev, malicious, malware, mfa, microsoft, monitoring, network, office, open-source, password, phishing, RedTeam, risk, service, software, supply-chain, threat, unauthorized, update, vulnerability, zero-day, zero-trust

While cybersecurity headlines are often dominated by the latest zero-day or notable vulnerability in a vendor’s software/product or open-source software library, the reality is that many significant data breaches have been and will continue to be due to misconfigurations.To underscore the serious of this issue, the US National Security Agency (NSA) and the Cybersecurity and…
Rhode Island suffers major cyberattack, exposing personal data of thousands

Dec 16, 2024 2:42 PM

Tags: attack, breach, conference, cyber, cyberattack, cybercrime, cybersecurity, data, data-breach, finance, fraud, government, hacker, identity, infrastructure, insurance, international, law, leak, malicious, malware, mfa, organized, password, ransom, service, theft, threat, unauthorized, update, vulnerability

Rhode Island has suffered a severe cyberattack that has potentially exposed the personal data of hundreds of thousands of residents enrolled in state-run social services programs since 2016.Officials confirmed that RIBridges, the government system for programs like Medicaid and SNAP, was infiltrated by an international cybercriminal group. Governor Dan McKee confirmed that sensitive information, including…
Future of proposed US cybersecurity healthcare bills in doubt

Dec 16, 2024 10:42 AM

Tags: access, attack, authentication, breach, business, ceo, cio, ciso, citrix, compliance, credentials, cybersecurity, data, data-breach, email, finance, government, group, healthcare, infrastructure, jobs, law, mfa, penetration-testing, ransomware, regulation, risk, risk-analysis, risk-management, service, technology, theft, training, unauthorized, vulnerability

Six months after Congressional hearings that promised action on the massive Change Healthcare ransomware attack and data theft, three pieces of proposed legislation to tighten cybersecurity requirements on healthcare providers are waiting to be dealt with.But Senators have left the proposals too late in the legislative calendar: Experts say the issue will likely only be…
Sicherheitslücken/Schadsoftware, Hacks (Dez. 2024): Windows, 7-Zip, Ivanti etc.

Dec 14, 2024 11:05 PM

Tags: cloud, exploit, ivanti, mfa, software, vulnerability, windows

Noch ein kleiner Sammelbeitrag zu Schwachstellen in diversen Produkten wie Windows, Ivanti Cloud-Apps, 7-Zip, Windows 9-Days, Dell Software, und mehr. Manche Schwachstellen sind gepatcht, für andere gibt es ein Exploit oder sie werden ausgenutzt. Weiterhin konnten Sicherheitsforscher die MFA für … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/12/14/sicherheitsluecken-und-schadsoftware-dez-2024-7-zip-ivanti/