Home
  • About Skyhigh Security
    • About Skyhigh Security
      • Skyhigh Security Overview
      • Leadership
      • Contact Us
      • Careers  
  • Products
    • Products
      • Security Service Edge
      • Cloud Access Security Broker
      • Secure Web Gateway
      • Private Access
      • Cloud-Native Application Protection Platform
  • Solutions
    • Solutions
      • Secure Web and Cloud
      • Detect and Mitigate Threats
      • Connect and Secure Remote Workers
      • Identify and Protect Sensitive Data
  • Resources
    • Resources
      • Newsroom
      • Blog
      • Intelligence Digest (SSID)
      • Contact Us
    • Learning Center
      • Customer Training
      • Cybersecurity Fundamentals
      • What is SSE?
      • What is SASE?
      • What is a CASB?
      • What is CNAPP?
    •  
      • What is ZTNA?
      • What is IaaS?
      • What is SaaS?
      • What is PaaS?
      • What is Cloud Security?
      • What is Browser Isolation?
  • Support
  • Partners
  • Careers
  • Search

Skyhigh Security
Intelligence Digest (SSID)

The SSID is an ongoing series that analyzes recent and noteworthy cloud security threats and incidents, cybercriminal actors and campaigns, vulnerabilities, and more.

(Ransom)Where are Office 365 users now vulnerable?

(Ransom)Where are Office 365 users now vulnerable?

by Rodman Ramezanian · August 3, 2022

A common misconception among enterprises and their users leads the belief that cloud environments are immune to threats of ransomware. However, in a recent discovery made by Proofpoint researchers, malicious actors can instigate ransomware attacks by exploiting Microsoft Office 365 file version backups – made available thanks to the platform’s native file “auto-save” feature.

Read More

It’s Plane To See – Unsecured Servers Can Put Lives at Stake

It’s Plane To See – Unsecured Servers Can Put Lives at Stake

by Rodman Ramezanian · July 6, 2022

An unsecured server has exposed sensitive data belonging to airport employees across Colombia and Peru. The AWS S3 buckets containing approximately 3TB of data dating back to 2018 consisted of airport employee records, ID card photos, and personally identifiable information (PII), including names, photos, occupations, and national ID numbers.

Read More

Learnings from Lapsus$ — the Advanced Persistent Teenagers?

Learnings from Lapsus$ — the Advanced Persistent Teenagers?

by Rodman Ramezanian · June 9, 2022

The new hot name in ransomware attacks is Lapsus$. If you haven’t heard of them before, you’ve probably heard of some of the companies they attacked, including Nvidia, Samsung, Okta, and Microsoft – just to name a few. For the uninformed, Lapsus$ is a hacking group that focuses on data theft and extortion.

Read More

Not-So-Harmless Chats — MS Teams Used To Distribute Malware

Not-So-Harmless Chats — MS Teams Used To Distribute Malware

by Rodman Ramezanian · May 19, 2022

According to reporting from Bleeping Computer, threat actors are ramping up their efforts against Microsoft Teams for malware distribution by planting malicious documents in chat threads, ultimately resulting in victims executing Trojans that hijack their corporate systems.

Read More

Subscribe to the SSID
Back to top
  • Privacy
  • Legal
  • Terms of Service
  • Trust — Service Status
  • Contact Us
  • Copyright © Musarubra US LLC
  • Twitter
  • LinkedIn