Tag: Cyber Security

  • How Threat Actors Are Abusing Microsoft Entra ID Self-Service Password Reset (SSPR) to Compromise Cloud Environments

    How Threat Actors Are Abusing Microsoft Entra ID Self-Service Password Reset (SSPR) to Compromise Cloud Environments

    DEFENDEDGE

    Threat actors are increasingly leveraging Microsoft Entra ID’s Self-Service Password Reset (SSPR) feature to conduct highly targeted, identity-driven attacks. Advanced threat groups, such as Storm-2949, have demonstrated how legitimate account recovery functionality can be manipulated to gain access to high-value executive and IT accounts. Once access is obtained, attackers move beyond traditional account compromise, targeting… Read more

  • Emerging Cyber Threat Trends Global SOC Teams Should Prepare For

    Emerging Cyber Threat Trends Global SOC Teams Should Prepare For

    DEFENDEDGE

    Cybercriminals are leveraging new technologies, targeting new industries, and exposing operational weaknesses. The evolving threat landscape spans healthcare, finance, government, manufacturing, education, and critical infrastructure. No industry is safe from ransomware, supply chain compromise, cloud misconfiguration, social engineering, and nation-state activity. Global SOC teams need to look beyond detecting the latest threats. Building and scaling… Read more

  • Using AI Responsibly: Risks, Incidents, and Controls

    Using AI Responsibly: Risks, Incidents, and Controls

    DEFENDEDGE

    Summary AI chatbots, including Claude, ChatGPT, or any other AI-powered chatbot, carry the inherent risk of unauthorized data exposure/loss. Since the introduction of AI chatbots to the public, multiple incidents have occurred that have either directly or indirectly resulted in unwanted data exposure. Non-exhaustive but impactful ways to reduce risk can be with AI usage… Read more

  • Why America is Cracking Down on Foreign Routers

    Why America is Cracking Down on Foreign Routers

    DEFENDEDGE

    Routers sit at the doorstep of our homes and small offices, they handle all traffic from Internet of Things (IoTs) to personal emails, family photos and even banking activity. Now, certain routers may be more difficult to obtain for anyone who is looking in the United States.  The Federal Communications Commission (FCC) has announced on… Read more

  • Major Web Attacks: The Impact of the Shai-Hulud Worm

    Major Web Attacks: The Impact of the Shai-Hulud Worm

    DEFENDEDGE

    The Shai-Hulud Worm: What is it? How is it different? Shai-Hulud is a novel, self‑propagating software supply chain worm that targets the NPM (Node Package Manager) ecosystem and associated development, CI/CD, and cloud-connected environments. Historically, supply chain compromises required a human threat actor to breach a vendor, modify a product or update mechanism, and then… Read more

  • Your Devices May Be Spying on You — And You Would Never Know

    Your Devices May Be Spying on You — And You Would Never Know

    DEFENDEDGE

    ,

    For anyone who frequently shops online, you may have noticed an increase in the number of electronic products sold by obscure, unheard of companies. Many of these products come with unbelievably, surprisingly affordable prices. A 4K projector with dual-band WiFi 6, 5G wireless, Bluetooth 5.2, and Android 13 for $54. What a deal. It almost… Read more

  • Salesforce Breaches 2025

    Salesforce Breaches 2025

    Andrea Tipton

    The second half of the year came with several waves of Salesforce-related breach incidents. Starting in August, researchers first linked the threat actors UNC6395/ShinyHunters. They were conducting a widespread campaign that targeted Salesforce environments by using compromised OAuth tokens linked to Salesloft’s Drift AI customer-engagement integration. The second wave can be considered more of a… Read more

  • Artificial Intelligence Threat Landscape

    Artificial Intelligence Threat Landscape

    DEFENDEDGE

    Artificial Intelligence (AI) is one of the fastest-growing aspects of the tech industry. Whether for professional or personal use, AI is a part of almost everyone’s life, from Google searches to work applications. As AI capabilities expand and more use cases emerge, the risk of exploitation also increases. While AI is a tool that IT… Read more

  • What is Email Bombing?

    What is Email Bombing?

    DEFENDEDGE

    Email bombing is a disruptive tactic in which a threat actor deliberately floods a victim’s inbox with thousands of unsolicited or automated messages in a short period of time. Discovering your inbox under an email bombing attack requires fast, deliberate action. Threat actors use email bombing as a tool for disruption and facilitation of further… Read more

  • CTFs as a Training Tool for Blue-Space Operators 

    CTFs as a Training Tool for Blue-Space Operators 

    DEFENDEDGE

    What is Capture the Flag (CTF)?  If you do not already know or if you are new to cybersecurity, a CTF is essentially a simulated challenge where participants must solve puzzles or investigate clues to locate the “flag.” Most events use a jeopardy-style board with categories such as:  Other formats use an attack-and-defend model where… Read more