#cloudforensics — Public Fediverse posts on home.social

Pen Test Partners @[email protected] · 2024-10-16 · 08:23 UTC

With a rise in Adversary in the Middle (AiTM) phishing, we've seen attackers leverage trusted compromised accounts to launch multi-stage attacks and follow-on BEC activity. Too often, investigations end with "If only this data had been available!"

We are kicking off our 3-part series on handling Business Email Compromise (BEC) incidents in Microsoft 365! 📧 In Part 1, Rachel dives into the key artefacts for investigating a BEC in M365 and where to find them.

👉 https://www.pentestpartners.com/security-blog/bec-ware-the-phish-part-1-investigating-incidents-in-m365/

This includes:

Why enabling Unified Audit Logging is essential for tracking attackers.

How to use Purview Content Search to analyse compromised mailboxes.

Pro tips for using Defender's Advanced Hunting to quickly scope the scale of an attack.

Stay tuned for more actionable insights in Parts 2 & 3!

#CyberSecurity #BusinessEmailCompromise #M365 #IncidentResponse
#MicrosoftDefender #EmailSecurity #DigitalForensics #DataRetention #ThreatHunting #CloudForensics

#cybersecurity #businessemailcompromise #m365 #incidentresponse #microsoftdefender #emailsecurity

Forensic Focus @[email protected] · 2024-04-22 · 10:09 UTC

UPCOMING WEBINAR – Fireside Chat: Navigating The Cloud – Expert Insights On Emerging Cloud Threats And Complexities https://www.forensicfocus.com/news/upcoming-webinar-fireside-chat-navigating-the-cloud-expert-insights-on-emerging-cloud-threats-and-complexities/ #CadoSecurity #cloudforensics #dfir

#cadosecurity #cloudforensics #dfir

Forensic Focus @[email protected] · 2024-04-16 · 10:20 UTC

UPCOMING WEBINAR – Fireside Chat: Navigating The Cloud – Expert Insights On Emerging Cloud Threats And Complexities https://www.forensicfocus.com/news/upcoming-webinar-fireside-chat-navigating-the-cloud-expert-insights-on-emerging-cloud-threats-and-complexities/ #CadoSecurity #DFIR #cloudforensics

#cadosecurity #dfir #cloudforensics

Forensic Focus @[email protected] · 2024-03-11 · 16:29 UTC

Cado Security releases its H2 2023 Cloud Threat Findings Report to help security teams secure against cloud-focused threat actors. https://www.forensicfocus.com/news/cado-security-releases-h2-2023-cloud-threat-findings-report/ #CadoSecurity #cloudforensics

#cadosecurity #cloudforensics

Forensic Focus @[email protected] · 2024-03-11 · 12:28 UTC

Chris Doman, Co-Founder of Cado Security, joins the Forensic Focus podcast to discuss cloud forensics and incident response. https://www.forensicfocus.com/podcast/how-cado-security-is-revolutionizing-forensics-and-incident-response-for-the-cloud/ #CadoSecurity #cloudforensics #dfir

#cadosecurity #cloudforensics #dfir