OSN April 9, 2021

Title: CISA Releases Post-Compromise Tool Aviary to Review Microsoft 365 Date Published: April 9, 2021 CISA releases post-compromise tool Aviary to review Microsoft 365 Excerpt: “Sparrow checks and installs the required PowerShell modules on the machine to analyze,...

OSN April 7, 2021

Title: Microsoft Teams, Exchange Server, Windows 10 Hacked in Pwn2Own 2021 Date Published: April 6, 2021 https://www.darkreading.com/threat-intelligence/microsoft-teams-exchange-server-windows-10-hacked-in-pwn2own-2021/d/d-id/1340601 Excerpt: “In the Enterprise...

OSN MARCH 4, 2021

Title: DHS Orders Agencies to Urgently Patch or Disconnect Exchange Servers Date Published: March 4, 2021 https://www.bleepingcomputer.com/news/security/dhs-orders-agencies-to-urgently-patch-or-disconnect-exchange-servers/ Excerpt: “CISA “strongly”...

OSN MARCH 2, 2021

Title: Multi-Payload Gootloader Platform Stealthily Delivers Malware and Ransomware Date Published: March 2, 2021 Multi-payload Gootloader platform stealthily delivers malware and ransomware Excerpt: “The delivery method for the six-year-old Gootkit financial...

OSN MARCH 1, 2021

Title: NSA, Microsoft Promote a Zero Trust Approach to Cybersecurity Date Published: February 27, 2021 https://www.bleepingcomputer.com/news/security/nsa-microsoft-promote-a-zero-trust-approach-to-cybersecurity/ Excerpt: “Combining user and device data with...