'

More value, less risk: How to implement generative AI across the organization securely and responsibly

The technology landscape is undergoing a massive transformation, and AI is at the center of this change—posing both new opportunities as well as new threats.  While AI can be used by adversaries to execute malicious activities, it also has the potential to be a game changer for organizations to help defeat cyberattacks at machine speed. Already … Read more

​​Zero Trust Workshop: Advance your knowledge with an online resource

Microsoft is on the front lines helping secure customers worldwide—analyzing and responding to cybersecurity threats, building security technologies,  and partnering with organizations to effectively deploy these technologies for increased security. Many of you have been following as we’ve described our Secure Future Initiative, which is pushing the Zero Trust principles verify explicitly, least privilege and assume … Read more

FBI: Spike in Hacked Police Emails, Fake Subpoenas

FBI: Spike in Hacked Police Emails, Fake Subpoenas

The Federal Bureau of Investigation (FBI) is urging police departments and governments worldwide to beef up security around their email systems, citing a recent increase in cybercriminal services that use hacked police email accounts to send unauthorized subpoenas and customer data requests to U.S.-based technology companies. In an alert (PDF) published this week, the FBI … Read more

CISA Warns of Critical Palo Alto Networks Bug Exploited in Attacks

CISA Warns of Critical Palo Alto Networks Bug Exploited in Attacks

In a recent warning, the Cybersecurity and Infrastructure Security Agency (CISA) has raised the alarm about a critical vulnerability in Palo Alto Networks Expedition. This flaw presents a serious security risk as threat actors have been actively exploiting it in attacks. Palo Alto Networks Expedition is a migration tool designed to assist in converting firewall configurations from various vendors, including Checkpoint and Cisco, to PAN-OS, Palo Alto’s operating system.

​​7 cybersecurity trends and tips for small and medium businesses to stay protected

​​7 cybersecurity trends and tips for small and medium businesses to stay protected

As October draws to a close, marking 21 years of Cybersecurity Awareness Month, cyberattacks continue to be a challenge for businesses of all sizes, however, small and medium businesses (SMBs) face distinct challenges when it comes to cybersecurity. Although SMBs face heightened cybersecurity threats, unlike large enterprises, they often lack the resources and expertise to … Read more

Shared Intel Q&A: Foreign adversaries now using ‘troll factories’ to destroy trust in U.S. elections

Shared Intel Q&A: Foreign adversaries now using ‘troll factories’ to destroy trust in U.S. elections

Foreign adversaries proactively interfering in U.S. presidential elections is nothing new. Related: Targeting falsehoods at US minorities, US veterans It’s well-documented how Russian intelligence operatives proactively meddled with the U.S. presidential election in 2016 and technologists and regulators have been monitoring and developing measures to address election meddling by foreign adversaries, which now happens routinely. … Read more

tips to avoid the dreaded phish

tips to avoid the dreaded phish

In today’s digital age, it’s more important than ever to be aware of the potential threats lurking online. Phishing scams, in particular, have become increasingly prevalent and sophisticated, making it crucial for individuals to educate themselves on how to stay safe. In this article, we’ll be sharing five foolproof tips from experts on how to protect yourself from phishing scams.

Midnight Blizzard conducts large-scale spear-phishing campaign using RDP files

Midnight Blizzard conducts large-scale spear-phishing campaign using RDP files

Since October 22, 2024, Microsoft Threat Intelligence has observed Russian threat actor Midnight Blizzard sending a series of highly targeted spear-phishing emails to individuals in government, academia, defense, non-governmental organizations, and other sectors. This activity is ongoing, and Microsoft will continue to investigate and provide updates as available. Based on our investigation of previous Midnight … Read more

News alert: Cybersecurity, AI priorities for 2025 highlighted at ATPC Cyber Forum in Atlanta

News alert: Cybersecurity, AI priorities for 2025  highlighted at ATPC Cyber Forum in Atlanta

Atlanta, GA, Oct. 30, 2024, CyberNewswire — The American Transaction Processors Coalition (ATPC) Cyber Council will convene “The Tie that Binds: A 21st Century Cybersecurity Dialogue,” on October 31, 2024, at the Bank of America Financial Center Tower’s Convention Hall in Atlanta. This event will feature leading cyber experts from the financial services sector, Federal … Read more

Change Healthcare Breach Hits 100M Americans

Change Healthcare Breach Hits 100M Americans

Change Healthcare says it has notified approximately 100 million Americans that their personal, financial and healthcare records may have been stolen in a February 2024 ransomware attack that caused the largest ever known data breach of protected health information. Image: Tamer Tuncay, Shutterstock.com. A ransomware attack at Change Healthcare in the third week of February … Read more

Guest Essay: API security-related exposures rose steeply across all industries in Q3 2024

News alert: Cybersecurity, AI priorities for 2025  highlighted at ATPC Cyber Forum in Atlanta

Application Programming Interfaces (APIs) have become the backbone of modern enterprises, facilitating seamless communication between both internal systems and external partners. Related: Biden-Harris administration opens Supply Chain Resilience Center As organizations increasingly rely on APIs, the number of APIs in use has dramatically increased. Since attackers follow the attack surface, this growth in API usage … Read more