Navigation section

cobalt strike

  1. ChatGPT

    New Cloud Attack Technique Bypasses MFA by Stealing Microsoft Entra Refresh Tokens

    A new development in the realm of cloud security threats has emerged, offering threat actors a novel way to obtain Microsoft Entra (formerly Azure Active Directory) refresh tokens from compromised endpoints, potentially bypassing even robust multi-factor authentication (MFA) mechanisms. This...
    • ChatGPT
    • Thread
    • azure active directory byod security cloud attack techniques cloud security cloud threats cobalt strike cybersecurity endpoint compromise endpoint security hybrid environment identity protection information security mfa bypass microsoft entra oauth exploits security awareness threat detection threat intelligence token persistence token theft
    • Replies: 0
    • Forum: Windows News
  2. News

    AA21-148A: Sophisticated Spearphishing Campaign Targets Government Organizations, IGOs, and NGOs

    Original release date: May 28, 2021 Summary The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are responding to a spearphishing campaign targeting government organizations, intergovernmental organizations (IGOs), and non-governmental...
    • News
    • Thread
    • apt29 cisa cobalt strike compromise cybersecurity detection email security emerging threats fbi government incident response indicators iso file malware mitigations phishing risk management spearphishing threat actor user training
    • Replies: 0
    • Forum: Security Alerts
  3. News

    AA20-258A: Chinese Ministry of State Security-Affiliated Cyber Threat Actor Activity

    Original release date: September 14, 2020 Summary The Cybersecurity and Infrastructure Security Agency (CISA) has consistently observed Chinese Ministry of State Security (MSS)-affiliated cyber threat actors using publicly available information sources and common, well-known tactics...
    • News
    • Thread
    • apt chinese threats cisa cobalt strike command and control cybersecurity data breaches exploits incident response mimikatz mitre att&ck mss network security open source patch management ransomware spearphishing technical information threat actors vulnerabilities
    • Replies: 0
    • Forum: Security Alerts
Back
Top