CISA has issued an emergency directive in response to Midnight Blizzard, or Cozy Bear, a Russian threat actor targeting Microsoft email accounts. The group is extracting information to access Microsoft customer systems. Strict security measures, including strong passwords and multi-factor authentication, are strongly recommended by CISA for all organizations (Microsoft included).

  • The Stoned Hacker@lemmy.world
    link
    fedilink
    English
    arrow-up
    5
    ·
    7 months ago

    It’s why I think it’s a shame the zero-trust is kinda a buzzword. this is exactly the type of situation where an actual zero trust architecture would be extremely useful.

    • Onno (VK6FLAB)
      link
      fedilink
      English
      arrow-up
      3
      arrow-down
      1
      ·
      7 months ago

      I think that zero trust is not enough.

      I think that you need to assume that you are going to be compromised and put processes and procedures in place before that happens to ensure business continuity.