The cyberattack campaign by threat actor Storm-2372 utilizes Microsoft Teams meeting invites for device code phishing, targeting various sectors globally since August 2024. By exploiting the OAuth 2.0 flow, they steal authentication tokens to access victim accounts. Microsoft advises blocking risky authentication methods and educating users on phishing recognition to mitigate such threats effectively.
CISOs flag gaps in GenAI strategy, skills, and infrastructure
A majority of C-suite leaders believe Generalized Artificial Intelligence (GenAI) is crucial for innovation while committing to further investment, according to NTT DATA. However, 45%
