CISA Cyber Security News – Threat Activity in Microsoft Cloud

January 14, 2021

cyber-security-lock-key

CISA has reported seeing post-compromise threat activity in Microsoft Cloud/Azure environments, identifying three key components of this advanced persistent threat:

Compromise / bypassing of federated identity solutions
Use of forged authentication tokens to move laterally to Microsoft cloud environments
Use of privileged access to a victim’s cloud environment to establish difficult-to-detect persistence mechanisms for Application Programming Interface (API)-based access.

In response, CISA is providing cyber security guidance on use of open-source tools, including a tool developed by CISA named Sparrow. This information technology tool helps in the analysis of Microsoft 365/Azure environments to detect potentially malicious activity.

For more information on this advanced persistent threat and open-source tools please visit CISA.gov, or reach out to our QED National team directly.

Posted in QED National News and tagged cisa, Cyber Security, Microsoft

These Activists Distrust Voting Machines. Just Don’t Call Them Election Deniers. June 4, 2023
As election activists rally against new voting machines, they are drifting into territory now dominated by conspiracy theorists.
Stuart A. Thompson
Apple Is Stepping Into the Metaverse. Will Anyone Care? June 3, 2023
Interest in the futuristic, immersive digital world is fading just as Apple plans to debut a virtual reality device.
Kellen Browning and Mike Isaac
Don Bateman, Trailblazer in Airline Safety, Dies at 91 June 3, 2023
His cockpit warning system, which alerts the crew if an aircraft is heading toward a mountain, a building or the ocean, has saved thousands of lives.
Richard Sandomir
How to Use AI to Edit and Generate Stunning Photos June 2, 2023
An A.I.-powered version of Photoshop and the image generator Midjourney live up to the hype.
Judge Dismisses D.C.’s Privacy Lawsuit Against Meta June 2, 2023
The District of Columbia accused the company of sharing user data in deceptive ways. A Superior Court decision said Meta had made its policies clear.
Cecilia Kang
Hard Fork: AI Extinction Risk and Nvidia’s Trillion-Dollar Valuation June 2, 2023
“It’s like if you were told that there’s going to be a world-conquering dictator and it’s Mr. Bean.”
Kevin Roose, Casey Newton, Davis Land, Rachel Cohn, Jen Poyant, Alyssa Moxley, Dan Powell, Elisheba Ittoop, Marion Lozano, Sophia Lanman and Rowan Niemisto
Boeing and NASA Delay Launch of Starliner Over Parachutes and Wiring June 2, 2023
The Starliner capsule was poised to fly people to orbit in July for the first time. But reviews found problems with its parachutes and its wiring.
Michael Roston
U.S. Proposes Requiring New Cars to Have Automatic Braking Systems June 1, 2023
The Transportation Department wants new cars to automatically stop when they detect an accident is likely.
Neal E. Boudette
Europe Frets U.S. Battery Factory Subsidies Will Hurt, Not Help June 1, 2023
The European Union is trying to assemble the building blocks to produce electric cars, but subsidies are luring companies to the United States.
Jack Ewing and Melissa Eddy
Amazon to Pay $25 Million to Settle Children’s Privacy Charges May 31, 2023
Regulators said the tech giant kept children’s Alexa voice recordings “forever,” violating a children’s privacy law.
Natasha Singer

CISA Cyber Security News – Threat Activity in Microsoft Cloud

Looking for Work?

QED National Headquarters