Blog

Context On July 27, 2023, The Australian Signals Directorate’s Australian Cyber Security Centre (ACSC), U.S. Cybersecurity and Infrastructure Security Agency (CISA), and U.S. National Security Agency (NSA) released an advisory “to warn vendors, designers, and developers of web applications and organizations using web applications about insecure direct object reference (IDOR) vulnerabilities.” The advisory primarily consists…

Bidemi (Bid) Ologunde is an intel analyst at Expedia Group. We were able to talk with Bid about topics ranging from his own podcast and background to the future of cybersecurity. His opinions expressed are his personal opinions and do not reflect the views of Expedia Group. You are no stranger to podcasts as you…

Before publishing, Descope informed Microsoft, several “large vulnerable applications,” and two authentication platform providers of the issue and Microsoft has reportedly taken mitigating steps. Context On June 20, 2023, researchers at Descope reported the technical details of a security flaw in the Microsoft Azure Active Directory (AD) Open Authorization (OAuth) process they dubbed “n0Auth.” According…

On June 13, 2023, security researchers at Trellix reported the details of a new information stealing malware written in Golang that they dubbed “Skuld.” Context Since April 2023, Trellix researchers observed the malware active against unspecified targets in North America, Europe, and Southeast Asia. Technical Details According to the report, Skuld attempts to steal sensitive…

Rafia Noor is an information security engineer in the operation technology division at Colgate-Palmolive. We had an opportunity to sit down with Rafia to discuss her career path, intelligence sharing at RH-ISAC, and the trajectory of cybersecurity. Tell us a little about what you do at Colgate-Palmolive and what fills your day.   Rafia: I…

On March 24, 2023, Proofpoint released their report, “Account Compromise, Financial Theft, and Supply Chain Attacks: Analyzing the Small and Medium Business APT Phishing Landscape in 2023.” Context The report provides insight into key trends in the increasing prevalence of sophisticated advanced persistent threats (APTs) targeting small and medium-sized businesses (SMBs). Key Takeaways Key points…

On May 23, 2023, Cofense researchers reported a phishing campaign with threat actors leveraging paid time off (PTO) and vacation requests as a lure theme. Context The report is based on a Phishing Defence Center (PDC)-reported a phishing campaign where threat actors sent emails to users claiming to be from ‘HR Departments’ and providing the users with links…

With cybersecurity being a flourishing industry with promising job opportunities, recent college graduates may have their sights set on a career in cyber threat intelligence. The notion that graduates must obtain a degree in computer science, computer programming, or machine learning to land a career in cybersecurity is no longer the case. Many skills developed…

Context On May 16, 2023, ZScaler threat researchers reported the technical details of a new ransomware-as-a-service (RaaS) operation they’ve observed being advertised on dark web forums. ZScaler researchers provided the following key takeaways: CryptNet is a new ransomware-as-a-service that has been advertised in underground forums since at least April 2023 The CryptNet threat group claims…

As a retailer or hospitality professional, we know that it is important to you to ensure that you are securing payment data effectively for your customers and for your business. It is also important for you to have a voice when it comes to the future of securing payment data through the ongoing development of…