How SAML Works
Security Assertion Markup Language (SAML) is a set of rules that helps different places, like a website and a login service, share information about who you are and what you’re allowed to do. It’s like
Continue readingCyberSecurity Revolution
Security Assertion Markup Language (SAML) is a set of rules that helps different places, like a website and a login service, share information about who you are and what you’re allowed to do. It’s like
Continue readingHealth Data of 4M Stolen in Cl0p MOVEit Breach of Colorado Department The Colorado Department of Health Care Policy & Financing (HCPF) has suffered a cyberattack by the Cl0p ransomware group, resulting in the theft
Continue readingXWorm and Remcos RAT Exploit PDF Files to Infect Critical Infrastructure A phishing campaign targeting victims in Europe and North America is using a malicious PDF file to deliver a Rust-based injector called Freeze[.]rs, which
Continue readingEvilProxy Cyberattack Flood Targets Execs via Microsoft 365 A phishing campaign called EvilProxy has targeted thousands of Microsoft 365 user accounts worldwide, sending 120,000 phishing emails to over 100 organizations in a three-month period. The
Continue readingMajor Design Flaw in Billions of Intel CPUs Exposes Data Leakage Vulnerability A newly revealed flaw in Intel CPUs, called ‘Downfall,’ allows for data leakage between users sharing a computer or cloud environment. The vulnerability
Continue readingLOLBAS in the Wild: 11 Living-Off-The-Land Binaries That Could Be Used for Malicious Purposes Cybersecurity researchers have discovered 11 living-off-the-land binaries-and-scripts (LOLBAS) that could be used by threat actors for post-exploitation activities. These binaries and
Continue readingCyber Security is always an afterthought in the startup world. It does not directly impact any of the metrics you care about the most in the early stage of a startup. It does not directly
Continue readingColorado Dept. of Higher Education Hit With Massive Data Breach The Colorado Department of Higher Education (CDHE) experienced a data breach in June due to a ransomware incident. The breach exposed private and sensitive data,
Continue readingCyberattack Suspends Operations at Hawaii’s Gemini North Observatory The National Science Foundation’s National Optical-Infrared Astronomy Research Laboratory (NOIRLab) detected an attempted cyberattack on its computer systems, leading to the suspension of observations at Gemini North
Continue readingRussian Hackers Launch Targeted Microsoft Teams Attacks The Russian state-sponsored hacking group known as Midnight Blizzard, or Nobelium, has been launching highly targeted phishing attacks using compromised Microsoft 365 tenants and the Microsoft Teams application.
Continue reading