InfoSec News Nuggets 01/31/2022

Attackers connect rogue devices to organizations’ network with stolen Office 365 credentials Attackers are trying out a new technique to widen the reach of their phishing campaigns: by using stolen Office 365 credentials, they try to connect rogue Windows devices to the victim organizations’ network by registering it with their Azure AD. If successful, they are ready to launch the second wave of the campaign, which consists of sending more phishing emails to targets outside…
Read More

InfoSec News Nuggets 3/4/2020

1 - Here’s the File Clearview AI Has Been Keeping on Me, and Probably on You Too After a recent, extensive, and rather withering bout of bad press, the facial recognition company Clearview AI has changed its homepage, which now touts all the things it says its technology can do, and a few things it can’t. Clearview’s system, the company says, is “an after-the-fact research tool. Clearview is not a surveillance system and is not built like…
Read More