threat-management

Microsoft flags phishing campaign abusing Entra ID, Google OAuth links

• identity
• phishing
• threat-intelligence
• threat-management

Microsoft flags phishing campaign abusing Entra ID, Google OAuth links

Laura French March 4, 2026

The OAuth URLs intentionally include an invalid scope, forcing redirection to malicious sites.

Read More Read more about Microsoft flags phishing campaign abusing Entra ID, Google OAuth links

Iran cyberattacks likely in expanding conflict, experts say

• threat-intelligence
• threat-management

Iran cyberattacks likely in expanding conflict, experts say

Steve Zurier March 2, 2026

Security pros say critical infrastructure in the U.S. and Israel are potential targets.

Read More Read more about Iran cyberattacks likely in expanding conflict, experts say

Five Eyes warn teams to patch Cisco Catalyst SD-WAN controllers

• network-security
• patchconfiguration-management
• threat-intelligence
• threat-management
• vulnerability-management

Five Eyes warn teams to patch Cisco Catalyst SD-WAN controllers

Steve Zurier February 26, 2026

By exploiting one Cisco SD-WAN controller, attackers can push policy changes to every corner of the enterprise....

Read More Read more about Five Eyes warn teams to patch Cisco Catalyst SD-WAN controllers

Stop alert fatigue: Fix security noise before breaches

• security-operations
• security-strategy-plan-budget
• soc
• threat-management

Stop alert fatigue: Fix security noise before breaches

Sanchit Mahajan February 26, 2026

Alert overload buries real threats — tune detection to deliver intelligence, not noise.

Read More Read more about Stop alert fatigue: Fix security noise before breaches

Google disrupts decade-long China-linked UNC2814 espionage campaign

• ransomware
• threat-intelligence
• threat-management

Google disrupts decade-long China-linked UNC2814 espionage campaign

Steve Zurier February 25, 2026

GTIG points out that this campaign had no overlaps with other PRC activities, such as Salt Typhoon....

Read More Read more about Google disrupts decade-long China-linked UNC2814 espionage campaign

CrowdStrike: Average cyberattack breakout time now under 30 minutes

• security-operations
• soc
• threat-intelligence
• threat-management
• vulnerability-management

CrowdStrike: Average cyberattack breakout time now under 30 minutes

Laura French February 25, 2026

Attackers gained speed as AI-enabled attacks and zero-day exploitation significantly increased.

Read More Read more about CrowdStrike: Average cyberattack breakout time now under 30 minutes

North Korea’s Lazarus Group targets US, Middle East healthcare sectors

• identity
• malware
• ransomware
• threat-intelligence
• threat-management

North Korea’s Lazarus Group targets US, Middle East healthcare sectors

Steve Zurier February 24, 2026

Threat actor focuses on identity-based attacks followed by a ransomware drop.

Read More Read more about North Korea’s Lazarus Group targets US, Middle East healthcare sectors

Helping Users with Practical Advice to Protect their Digital Devices – Runa Sandvik – ASW #371

• Privacy
• threat-management

Helping Users with Practical Advice to Protect their Digital Devices – Runa Sandvik – ASW #371

Mike Shema February 24, 2026

Read More Read more about Helping Users with Practical Advice to Protect their Digital Devices – Runa Sandvik – ASW #371

Threat group leverages LLMs to compromise 600 FortiGate firewalls

• identity
• ssomfa
• threat-intelligence
• threat-management

Threat group leverages LLMs to compromise 600 FortiGate firewalls

Steve Zurier February 23, 2026

Amazon Threat Intelligence said the attacks happened over five weeks in 55 countries.

Read More Read more about Threat group leverages LLMs to compromise 600 FortiGate firewalls