CISA Cyber Security News – Threat Activity in Microsoft Cloud

January 14, 2021

cyber-security-lock-key

CISA has reported seeing post-compromise threat activity in Microsoft Cloud/Azure environments, identifying three key components of this advanced persistent threat:

Compromise / bypassing of federated identity solutions
Use of forged authentication tokens to move laterally to Microsoft cloud environments
Use of privileged access to a victim’s cloud environment to establish difficult-to-detect persistence mechanisms for Application Programming Interface (API)-based access.

In response, CISA is providing cyber security guidance on use of open-source tools, including a tool developed by CISA named Sparrow. This information technology tool helps in the analysis of Microsoft 365/Azure environments to detect potentially malicious activity.

For more information on this advanced persistent threat and open-source tools please visit CISA.gov, or reach out to our QED National team directly.

Posted in QED National News and tagged cisa, Cyber Security, Microsoft

Who’s Who Behind the Dawn of the Modern Artificial Intelligence Movement December 3, 2023
Before chatbots exploded in popularity, a group of researchers, tech executives and venture capitalists had worked for more than a decade to fuel A.I.
J. Edward Moreno
How Elon Musk and Larry Page’s AI Debate Led to OpenAI and an Industry Boom December 3, 2023
The people who were most afraid of the risks of artificial intelligence decided they should be the ones to build it. Then distrust fueled a spiraling competition.
Cade Metz, Karen Weise, Nico Grant and Mike Isaac
Inside Kick, an Upstart Streaming Competitor to Twitch December 2, 2023
The Twitch competitor has doled out generous deals to content creators. It has also faced criticism for its lax moderation and embrace of online gambling.
Kellen Browning
Netflix Builds a ‘Squid Game’ Universe as It Awaits a Second Season December 2, 2023
A reality show and a live experience are two ways of keeping the dystopian series in the public eye. Is the original’s bleak message being diluted?
Nicole Sperling
TikTok’s C.E.O. Uses Personal Touch to Address Antisemitism Concerns December 1, 2023
The company in recent weeks organized several in-person meetings between its top executive and Jewish groups and business leaders.
Sapna Maheshwari
What’s Next for OpenAI, Binance Is Binanceled and A.I. Is Eating the Internet December 1, 2023
It’s full steam ahead for the tech world despite, well, everything.
Kevin Roose, Casey Newton, Davis Land, Rachel Cohn, Jen Poyant, Alyssa Moxley, Dan Powell, Marion Lozano and Rowan Niemisto
Judge Halts TikTok Ban in Montana December 1, 2023
TikTok, which is owned by the Chinese company ByteDance, has been locked in a legal battle with Montana since the state passed the ban in April.
Sapna Maheshwari
Advertisers Say They Do Not Plan to Return to X After Musk’s Comments December 1, 2023
Elon Musk, the owner of X, criticized advertisers with expletives on Wednesday at The New York Times’s DealBook Summit.
Kate Conger and Tiffany Hsu
Tesla Begins Delivery of the Cybertruck Today November 30, 2023
Two years behind schedule, the electric model has an unusual design that sets it apart from rival pickups, which could limit its sales.
Jack Ewing
4,789 Facebook Accounts in China Impersonated Americans, Meta Says November 30, 2023
The company warned that the inauthentic accounts underscored the threat of foreign election interference in 2024.
Steven Lee Myers

CISA Cyber Security News – Threat Activity in Microsoft Cloud

Looking for Work?

QED National Headquarters