News

Mitiga in the news
August 31, 2022
The Inevitability of Cloud Breaches: Tales of Real-World Cloud Attacks

While cloud breaches are going to happen, that doesn't mean we can't do anything about them. By better understanding cloud attacks, organizations can better prepare for them.

August 31, 2022
Rain Capital Portfolio Leads with Top RSA Sessions

This year at RSA, the industry’s top cybersecurity conference. Ofer Maor of Mitiga with his talk of It's Getting Real & Hitting the Fan! Real World Cloud Attacks, and Sounil Yu of JupiterOne with his session on Cyber Defense Matrix: Revolutions, led the top-rated sessions roster, which were selected by conference attendees. Both sessions are packed with insights and valuable lessons from a practitioner’s point of view.

August 29, 2022
New phishing scam targets Microsoft 365 accounts of executives

Mitiga finds the Microsoft 365 accounts of business executives under attack by malicious attackers who use a combined strategy of spear phishing and man-in-the-middle methods.

August 29, 2022
Microsoft 365 Business Users Targeted With New DocuSign Phishing Scam

According IT Pro, a new business email compromise (BEC) campaign has been targeting Microsoft 365 organizations in a bid to hack corporate executives’ accounts and maliciously divert business payments.

August 25, 2022
Hackers are attempting to steal millions of dollars from businesses by bypassing multi-factor authentication

Cybersecurity researchers detail a BEC scam targeting high-level Microsoft Office 365 accounts, even if they're protected with MFA.

August 25, 2022
Microsoft 365 business users targeted with new DocuSign phishing scam

A new business email compromise (BEC) campaign has been targeting Microsoft 365 organizations in a bid to hack corporate executives’ accounts and maliciously divert business payments.

August 25, 2022
Microsoft 365 accounts are being targeted by new email scams

Cybersecurity experts are warning of a new, widespread business email compromise (BEC) campaign, which seeks to reroute large money transactions to bank accounts belonging to the attackers.

August 25, 2022
5 Tips To Help You Prepare for a Potential Slack or Office 365 Breach

Over the last two years, digital transformation projects have accelerated and cloud-based collaboration platforms, such as Office 365 and Slack, have been adopted even more rapidly (no doubt accelerated by the pandemic and increased accessibility via smart phones and reliable internet access).

August 25, 2022
Mitiga: Attackers evade Microsoft MFA to lurk inside M365

During an incident response investigation, Mitiga discovered attackers were able to create a second authenticator with no multifactor authentication requirements.

"We know how important it is to be prepared before an incident occurs, especially in cloud infrastructure."
- Adam Fletcher, Chief Security Officer at Blackstone