(Ransom)Where are Office 365 users now vulnerable?
by Rodman Ramezanian · August 3, 2022
A common misconception among enterprises and their users leads the belief that cloud environments are immune to threats of ransomware. However, in a recent discovery made by Proofpoint researchers, malicious actors can instigate ransomware attacks by exploiting Microsoft Office 365 file version backups – made available thanks to the platform’s native file “auto-save” feature.
It’s Plane To See – Unsecured Servers Can Put Lives at Stake
by Rodman Ramezanian · July 6, 2022
An unsecured server has exposed sensitive data belonging to airport employees across Colombia and Peru. The AWS S3 buckets containing approximately 3TB of data dating back to 2018 consisted of airport employee records, ID card photos, and personally identifiable information (PII), including names, photos, occupations, and national ID numbers.
Learnings from Lapsus$ — the Advanced Persistent Teenagers?
by Rodman Ramezanian · June 9, 2022
The new hot name in ransomware attacks is Lapsus$. If you haven’t heard of them before, you’ve probably heard of some of the companies they attacked, including Nvidia, Samsung, Okta, and Microsoft – just to name a few. For the uninformed, Lapsus$ is a hacking group that focuses on data theft and extortion.
Not-So-Harmless Chats — MS Teams Used To Distribute Malware
by Rodman Ramezanian · May 19, 2022
According to reporting from Bleeping Computer, threat actors are ramping up their efforts against Microsoft Teams for malware distribution by planting malicious documents in chat threads, ultimately resulting in victims executing Trojans that hijack their corporate systems.