Phishing
Threat Intelligence

Microsoft OAuth App Impersonation Leads to MFA Phishing

Posted on August 6, 2025

By JJ Josing, Principal Threat Researcher

Executive Summary Proofpoint discovered a widespread phishing campaign leveraging fake Microsoft OAuth applications to bypass multifactor authentication (MFA) and harvest Microsoft 365 credentials. The attackers impersonated reputable brands like RingCentral, Adobe, SharePoint, and DocuSign, by luring victims into approving minimal‑privilege access. Even if MFA was declined, victims were redirected through CAPTCHA and a phishing page using…

Read More
CISO Benchmark
Reports

Cybersecurity in 2025: What CISOs in Retail & Hospitality Are Prioritizing

Posted on July 24, 2025

By Annie Chambliss, RH-ISAC Director of Marketing and Communications

As the digital threat landscape continues to evolve, so too does the role of the CISO. The newly released 2025 RH-ISAC CISO Benchmark Report, developed in partnership with Accenture, offers a compelling snapshot of how cybersecurity leaders across retail and hospitality are adapting to new challenges, investing in resilience, and aligning security with business strategy….

Read More
sharepoint
Threat Intelligence

Microsoft Warns of Active Exploitation of SharePoint via ToolShell Zero-Day

Posted on July 21, 2025

By Bradford Regeski, Cyber Threat Intelligence Analyst

Executive Summary Microsoft has identified widespread, active exploitation of a new SharePoint remote code execution (RCE) vulnerability chain, designated ToolShell, tracked as CVE-2025-53770. This zero-day exploit, demonstrated publicly on X just days prior, allows unauthenticated attackers to compromise on-premises SharePoint servers globally, extracting cryptographic secrets and enabling full remote control. Microsoft, and CISA, has confirmed the active exploitation and…

Read More
Threat Intelligence

Recent Compromises of Network-Separated Environments in South Korea Highlight Potential Security Gaps

Posted on July 16, 2025

By Bradford Regeski, Cyber Threat Intelligence Analyst

Executive Summary Recent major cyber incidents several South Korean entities highlight a critical concern within network-separated, or air-gapped, environments. Despite the inherent security assumptions often associated with these isolated setups, these breaches demonstrate a dangerous decline in caution and a false sense of security. This has led to successful compromises, highlighting that even seemingly air-gapped…

Read More
CISO Benchmark
Press Release

RH-ISAC Releases 2025 CISO Benchmark Report, Showcasing Growth in Retail and Hospitality Cybersecurity

Posted on July 9, 2025

By Annie Chambliss, RH-ISAC Director of Marketing and Communications

VIENNA, VA (July 9, 2025) – The Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) has released its 2025 CISO Benchmark Report, offering a detailed look at the industry’s growing focus on proactive, business-enabling cybersecurity strategies.  The 2025 report, developed in partnership with Accenture, draws on input from nearly 200 cybersecurity leaders across retail…

Read More