While cloud breaches are going to happen, that doesn't mean we can't do anything about them. By better understanding cloud attacks, organizations can better prepare for them.

This year at RSA, the industry’s top cybersecurity conference. Ofer Maor of Mitiga with his talk of It's Getting Real & Hitting the Fan! Real World Cloud Attacks, and Sounil Yu of JupiterOne with his session on Cyber Defense Matrix: Revolutions, led the top-rated sessions roster, which were selected by conference attendees. Both sessions are packed with insights and valuable lessons from a practitioner’s point of view.

Mitiga finds the Microsoft 365 accounts of business executives under attack by malicious attackers who use a combined strategy of spear phishing and man-in-the-middle methods.

According IT Pro, a new business email compromise (BEC) campaign has been targeting Microsoft 365 organizations in a bid to hack corporate executives’ accounts and maliciously divert business payments.

Cybersecurity researchers detail a BEC scam targeting high-level Microsoft Office 365 accounts, even if they're protected with MFA.

A new business email compromise (BEC) campaign has been targeting Microsoft 365 organizations in a bid to hack corporate executives’ accounts and maliciously divert business payments.

Cybersecurity experts are warning of a new, widespread business email compromise (BEC) campaign, which seeks to reroute large money transactions to bank accounts belonging to the attackers.

Over the last two years, digital transformation projects have accelerated and cloud-based collaboration platforms, such as Office 365 and Slack, have been adopted even more rapidly (no doubt accelerated by the pandemic and increased accessibility via smart phones and reliable internet access).

During an incident response investigation, Mitiga discovered attackers were able to create a second authenticator with no multifactor authentication requirements.