Sign up to save your podcasts
Or
Share The Microsoft Email Hack - Service/User Accounts Used for OAUTH SSO w/ Greg Kutzbach
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
The Microsoft Email Hack - Service/User Accounts Used for OAUTH SSO w/ Greg Kutzbach
Who: Greg Kutzbach, Digital Forensic Expert, Exhibit A Cyber
Garret Grajek, CEH, CISSP, CEO of YouAttest
Microsoft just suffered a major attack on their internal email systems. The culprits were deemed to be Russian state actors.
It appears the attackers overtook “legacy” accounts and created malicious OAUTH access. Cyber forensic expert Greg Kutzbach, an expert on digital discovery, will spell out the hack, and more importantly, how organizations can defend themselves.
The start of the solution to this problem is review of the permissions - especially the permissions on service accounts. YouAttest will show how enterprises can both review their current accounts and be triggered on changes in permission on service and other key accounts.
Need to automate your identity audits? Contact us at YouAttest - we will show you how - https://youattest.com/contact/
View all episodes
By YouAttestWho: Greg Kutzbach, Digital Forensic Expert, Exhibit A Cyber
Garret Grajek, CEH, CISSP, CEO of YouAttest
Microsoft just suffered a major attack on their internal email systems. The culprits were deemed to be Russian state actors.
It appears the attackers overtook “legacy” accounts and created malicious OAUTH access. Cyber forensic expert Greg Kutzbach, an expert on digital discovery, will spell out the hack, and more importantly, how organizations can defend themselves.
The start of the solution to this problem is review of the permissions - especially the permissions on service accounts. YouAttest will show how enterprises can both review their current accounts and be triggered on changes in permission on service and other key accounts.
Need to automate your identity audits? Contact us at YouAttest - we will show you how - https://youattest.com/contact/