(Ransom)Where are Office 365 users now vulnerable?

(Ransom)Where are Office 365 users now vulnerable?

by Rodman Ramezanian · August 3, 2022

A common misconception among enterprises and their users leads the belief that cloud environments are immune to threats of ransomware. However, in a recent discovery made by Proofpoint researchers, malicious actors can instigate ransomware attacks by exploiting Microsoft Office 365 file version backups – made available thanks to the platform’s native file “auto-save” feature.

Read More
It’s Plane To See – Unsecured Servers Can Put Lives at Stake

It’s Plane To See – Unsecured Servers Can Put Lives at Stake

by Rodman Ramezanian · July 6, 2022

An unsecured server has exposed sensitive data belonging to airport employees across Colombia and Peru. The AWS S3 buckets containing approximately 3TB of data dating back to 2018 consisted of airport employee records, ID card photos, and personally identifiable information (PII), including names, photos, occupations, and national ID numbers.

Read More
Learnings from Lapsus$ — the Advanced Persistent Teenagers?

Learnings from Lapsus$ — the Advanced Persistent Teenagers?

by Rodman Ramezanian · June 9, 2022

The new hot name in ransomware attacks is Lapsus$. If you haven’t heard of them before, you’ve probably heard of some of the companies they attacked, including Nvidia, Samsung, Okta, and Microsoft – just to name a few. For the uninformed, Lapsus$ is a hacking group that focuses on data theft and extortion.

Read More
Not-So-Harmless Chats — MS Teams Used To Distribute Malware

Not-So-Harmless Chats — MS Teams Used To Distribute Malware

by Rodman Ramezanian · May 19, 2022

According to reporting from Bleeping Computer, threat actors are ramping up their efforts against Microsoft Teams for malware distribution by planting malicious documents in chat threads, ultimately resulting in victims executing Trojans that hijack their corporate systems.

Read More
Subscribe to the SSID