Microsoft Fixes New Azure AD Vulnerability Impacting Bing Search and Major Apps
Microsoft has patched a misconfiguration issue impacting the Azure Active Directory (AAD) identity and access management service that...
top of page
Search
Nathan Clark
- Mar 1
- 5 min
SEC cyber risk management rule—a security and compliance opportunity
In my practice as a Microsoft Global Black Belt, I focus on the technical and business enablement aspects of protecting organizations...
6 views0 comments
Nathan Clark
- Feb 1
- 3 min
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Over 130 companies tangled in sprawling phishing campaign that spoofed a multi-factor authentication system. Targeted attacks on Twilio...
4 views0 comments
Nathan Clark
- Nov 2, 2022
- 4 min
Watering Hole Attacks Push ScanBox Keylogger
Researchers uncover a watering hole attack likely carried out by APT TA423, which attempts to plant the ScanBox JavaScript-based...
6 views0 comments
Nathan Clark
- Sep 30, 2022
- 2 min
Ransomware Attacks are on the Rise
Lockbit is by far this summer’s most prolific ransomware group, trailed by two offshoots of the Conti group. After a recent dip,...
5 views0 comments
Nathan Clark
- Aug 1, 2022
- 2 min
Phishing Attacks Skyrocket with Microsoft and Facebook as Most Abused Brands
Instances of phishing attacks leveraging the Microsoft brand increased 266 percent in Q1 compared to the year prior. The bloom is back on...
6 views0 comments
Nathan Clark
- Jul 5, 2022
- 4 min
A Guide to Surviving a Ransomware Attack
Oliver Tavakoli, CTO at Vectra AI, gives us hope that surviving a ransomware attack is possible, so long as we apply preparation and...
11 views0 comments
Nathan Clark
- Mar 31, 2022
- 4 min
RCE Bug in Spring Cloud Could Be the Next Log4Shell, Researchers Warn
The security bug could crop up, so to speak, in any number of Java applications. NOTE: This post is about the confirmed and patched...
15 views0 comments
Nathan Clark
- Mar 9, 2022
- 2 min
Critical Firefox Zero-Day Bugs Allow RCE, Sandbox Escape
Both vulnerabilities are use-after-free issues in Mozilla’s popular web browser. Mozilla has released an emergency update for its Firefox...
24 views0 comments
Nathan Clark
- Dec 30, 2021
- 7 min
5 Cybersecurity Trends to Watch in 2022
Here’s what cybersecurity watchers want infosec pros to know heading into 2022. No one could have predicted the sheer chaos the...
12 views0 comments
Nathan Clark
- Dec 11, 2021
- 2 min
New zero-day exploit for Log4j Java library is an enterprise nightmare
Proof-of-concept exploits for a critical zero-day vulnerability in the ubiquitous Apache Log4j Java-based logging library are currently...
8 views0 comments
Nathan Clark
- Nov 3, 2021
- 4 min
Google Chrome is Abused to Deliver Malware as ‘Legit’ Win 10 App
Crooks behind a newly identified malware campaign are targeting Windows 10 with malware that can infect systems via a technique that...
18 views0 comments
Nathan Clark
- Oct 8, 2021
- 4 min
Microsoft’s 5 guiding principles for decentralized identities
Three years ago, as part of Microsoft’s mission to empower people and organizations to achieve more, we announced that we were incubating...
10 views0 comments
Nathan Clark
- Sep 10, 2021
- 3 min
Defense in Depth (DiD): Think Like a Hacker
The current threat landscape is rapidly advancing, with cybercriminals constantly upgrading their toolset to break through security...
11 views0 comments
Nathan Clark
- Aug 11, 2021
- 6 min
Actively Exploited Windows Zero-Day Gets a Patch
Microsoft’s August 2021 Patch Tuesday addressed a smaller set of bugs than usual, including more Print Spooler problems, a zero-day and...
21 views0 comments
Nathan Clark
- Aug 2, 2021
- 3 min
NSA Warns Public Networks are Hacker Hotbeds
Agency warns attackers targeting teleworkers to steal corporate data. The U.S. National Security Agency is offering advice to security...
17 views0 comments
Nathan Clark
- Jul 29, 2021
- 5 min
CISA’s Top 30 Bugs: One’s Old Enough to Buy Beer
There are patches or remediation's for all of them, but they’re still being picked apart. Why should attackers stop if the flaws remain...
10 views0 comments
Nathan Clark
- Jul 27, 2021
- 3 min
The True Impact of Ransomware Attacks
Keeper research reveals that in addition to knocking systems offline, ransomware attacks degrade productivity, cause organizations to...
14 views0 comments
Nathan Clark
- Jul 23, 2021
- 2 min
Microsoft Issues Windows 10 Workaround Fix for ‘SeriousSAM’ Bug
A privilege elevation bug in Windows 10 opens all systems to attackers to access data and create new accounts on systems. A privilege...
50 views0 comments
Nathan Clark
- Jan 6, 2020
- 2 min
LetMeIn101: How the Bad Guys Get Your Password
Passwords are essential to your cyber-safety. You know it, but if you’re like the rest of the digital society, you probably have dozens...
30 views0 comments
bottom of page