Blackpoint Cyber’s Post

For those following the recent DHS publication following MSFT's breach by the Storm 0558 threat actor (great read at: https://lnkd.in/eKiqGD8H) I want to highlight one of the key takeaways: " Digital Identity Standards and Guidance: Cloud service providers should implement emerging digital identity standards to secure cloud services against prevailing threat vectors..." YES -and so should every consumer of CSP resources (e.g. everyone). The vast majority of this breach, just like every other APT breach goes to credentials as root cause. This is because decades of lumping technology and process on top of fundamentally insecure design flaws in the internet doesn't fix the problem, it just kicks the can. This is why Gradient exists: change the game by replacing traditional credentials with something that isn't easy to steal! Bonus: this doesn't just fix security problems, it makes secure access easier for systems, users and engineers alike!

Cyber scoop Microsoft rolls out expanded logging six months after Chinese breach: The technology giant has come under heavy criticism for not making robust logging features available by default.  The post Microsoft rolls out expanded logging six months after Chinese breach appeared first on CyberScoop. Check it out!

CrowdStrike, a growing cybersecurity firm, unwittingly triggered a massive IT outage on Friday, disrupting businesses, including healthcare, after issuing what was supposed to be a routine software update. The firm attempted to update its Falcon Sensor product, which protects data encrypted on the cloud from cyberattacks. However, there was a bug during deployment, with some Microsoft users experiencing a critical “blue screen” error, or what is known as the “blue screen of death,” blocking attempts to reboot. CrowdStrike CEO George Kurtz took to X early Friday morning in an attempt to ease clients’ concerns, stating the problem had been identified, isolated and a fix was in the works. “Mac and Linux hosts are not impacted. This is not a security incident or cyberattack,” Kurtz stressed. “Our team is fully mobilized to ensure the security and stability of CrowdStrike customers.” #crowdstrike #globaloutage #securityupdate

The threat landscape is rapidly evolving, with data destruction attacks increasingly pervasive and more sophisticated than in years past. Read more https://bit.ly/49kmWS0 #CloudAce #cloudaceindonesia #Google #GCP #security #cloudacebiggerstronger

CrowdStrike is a leading cybersecurity company that creates software to protect computers and devices from hacks and viruses. Many large organizations, including banks and healthcare providers, rely on CrowdStrike to secure their systems. On Friday, CrowdStrike released an update to its Falcon security software. (...) #bluebackground #bluescreen #bluescreenofdeath #computercrash #Crowdstrike #death #errormessage #hexadecimalerrorcodes #sadfaceemoji #technicaldetails #whitetext #Windows #Windowscrash

Trending Cyber Attack news headlines on Google https://lnkd.in/eqX-K-zJ APT29 moves from Government infrastructure towards Cloud Service Providers APT29, also known as Midnight Blizard or Cozy Bear and associated with Russian Intelligence, appears to have altered its approach from targeting government infrastructure to focusing on cloud service providers. This strategic shift is driven by the increased challenges posed by law enforcement efforts against infiltrations into government systems. Cloud services offer a more lucrative avenue for malicious actors, as compromising them can have far-reaching consequences, such as impacting global supply chains, as seen in incidents like SolarWinds and the recent MoveIT File transfer software breach. BlackCat Claims Responsibility for Pharmacy […]

Reimagine your approach to insider risk and take control of sensitive data access with BigID: https://bit.ly/4bjKUyq 🛡️ Protection against insider threats across AWS S3, M365, & more 🛡️ Reduce insider access to the data that matters most 🛡️ Accelerate DSPM + DLP + DAG

A well-known method is DNSSEC, in which resource records are signed with asymmetric cryptosystems. DNSSEC is partly used in practice, but the majority of DNS Internet traffic is not protected by it... https://lnkd.in/gAwpYXQc #AbhishekGhosh #security #DNS #internet #technology

Now in Data Centre Magazine 🗞 Seclore's CRO Justin Endres is quoted about the CrowdStrike worldwide outage.  “Google’s compute engine and Azure reported outages which is why we saw banks, airlines and so on all taken offline. North America saw only a fraction of what Asia experienced. CRWD runs at high privilege so the impact is significant. Recovery will be measured in weeks, not hours, given many of the impacted systems will need to be rebuilt manually.” Read the whole article here: https://lnkd.in/gxciXYVG #Cybersecurity #DataSecurity #CyberNews

Microsoft Identifies Storm&0501 as Major Threat in Hybrid Cloud Ransomware AttacksThe threat actor known as Storm-0501 has targeted government, manufacturing, transportation, and law enforcement sectors in the U.S. to stage ransomware attacks. The multi-stage attack campaign is designed to compromise hybrid cloud environments and perform lateral movement from on-premises to cloud environment, ultimately resulting in data exfiltration, credential theft, tampering, persistenthttps://lnkd.in/dCw6rRQY