December 11, 2024 at 03:50PM Researchers at Oasis Security exploited a Microsoft Azure multifactor authentication vulnerability, dubbed “AuthQuake,” allowing unauthorized access to user accounts, including Microsoft 365 services. The flaw, caused by a lack of rate limits during MFA sign-in attempts, was fixed by Microsoft in October 2023. Recommendations for improved security were provided. ### … Read more
December 11, 2024 at 10:59AM In the first half of 2024, over 9,000 cyber incidents occurred, highlighting cybersecurity as a business priority. CEOs emphasize security investments but remain concerned about effective threat mitigation. Key lessons include the importance of strong password policies, limitations of multifactor authentication, and addressing human errors to enhance overall cybersecurity resilience. … Read more
December 11, 2024 at 09:42AM A critical vulnerability in Microsoft’s multi-factor authentication (MFA) was identified, allowing attackers to bypass security easily without user notice. Labeled AuthQuake, the flaw stemmed from inadequate rate limits and extended code validity. Microsoft addressed the issue in October 2024, tightening security measures to enhance MFA effectiveness. **Meeting Takeaways: Dec 11, … Read more
December 11, 2024 at 08:46AM Snowflake will require all customers to enable multifactor authentication (MFA) by November 2025, following a three-phase policy change. After incidents of attacks on customers, this measure aims to enhance security, with guides available for migration. Failure to comply will result in access being blocked after specified deadlines. ### Meeting Takeaways: … Read more
December 10, 2024 at 10:11AM The article by Varonis Security Specialist Tom Barnea discusses the evolution of sophisticated phishing attacks that exploit AI and legitimate platforms. A specific case involving a U.K. insurance company illustrates how attackers used a trusted sender’s email and created deceptive links. Recommendations emphasize user awareness and technical measures for prevention. … Read more
December 4, 2024 at 10:34AM NIST’s updated password guidelines emphasize length over complexity for stronger security. Key recommendations include supporting long passphrases, implementing multi-factor authentication (MFA), avoiding mandatory password changes unless necessary, blocking known compromised passwords, and eliminating outdated recovery methods. These measures help organizations enhance password policies and reduce vulnerabilities. ### Key Takeaways from … Read more
November 29, 2024 at 05:33AM Researchers warn of a phishing-as-a-service (PhaaS) toolkit, Rockstar 2FA, targeting Microsoft 365 credentials through email campaigns. Utilizing adversary-in-the-middle (AitM) attacks, it bypasses multi-factor authentication (MFA). Promoted features assist cybercriminals in executing campaigns with minimal expertise, leading to significant potential financial losses for victims. ### Meeting Takeaways – Cybercrime / Cloud … Read more
November 26, 2024 at 11:10AM Proposed legislation, the Health Care Cybersecurity and Resiliency Act of 2024, mandates American hospitals to adopt multifactor authentication and minimum cybersecurity standards. It aims to enhance coordination between HHS and CISA, improve breach reporting, and provide federal cybersecurity training, reflecting the urgency of safeguarding sensitive health data after recent cyberattacks. … Read more
November 26, 2024 at 06:15AM Geico and Travelers were fined $11 million in New York for data breaches affecting over 120,000 individuals. Geico’s quoting tools were exploited in cyberattacks, while Travelers’ agent portal lacked multi-factor authentication. Both companies failed to implement adequate security measures and will enhance their cybersecurity practices as part of their settlements. … Read more
November 25, 2024 at 04:54AM A Russian cyberespionage group executed a Nearest Neighbor Attack to infiltrate Organization A’s network via Wi-Fi, after compromising a nearby organization. Investigated by Volexity, the attack involved credential theft and sophisticated methods like using Microsoft’s Cipher.exe to erase traces. The incident highlights Wi-Fi security vulnerabilities for organizations. ### Meeting Notes … Read more