%term

The Configuration Drift Behind the Teams Helpdesk Breach

Apr 27, 2026 By Garrett Hamilton In Reach Security

On April 22, 2026, Google's Threat Intelligence Group and Mandiant disclosed a campaign by a threat actor they're tracking as UNC6692. The group breached enterprise networks by impersonating IT helpdesk staff over Microsoft Teams, ultimately exfiltrating Active Directory databases and achieving full domain compromise. What's notable about UNC6692 is what they didn't do. They didn't use a zero-day. They didn't exploit a software vulnerability.

Read Post

Reach Security

Read more about The Configuration Drift Behind the Teams Helpdesk Breach

Introducing Atlas: a global age regulation tracker

Apr 27, 2026 By Brandon Chen In Persona

Over 300 age-related bills were introduced across several US states in 2025 alone. We’ve heard firsthand from numerous legal and compliance teams that keeping up with these regulations is incredibly overwhelming. That’s why we developed Atlas, a global database tracking evolving age assurance regulations. Atlas tracks recent legislation impacting social media platforms, adult content, age-restricted services, and other related legislation.

Read Post

Persona

Read more about Introducing Atlas: a global age regulation tracker

Agentic SecOps: Build a security AI agent that automatically investigates detections

Apr 27, 2026 By Daniel Ballmer In LimaCharlie

A credential access event fired. An AI agent investigated it, correlated it against running processes, assessed the risk, and closed the ticket. No analyst touched it. The entire loop ran in minutes. This is what security operations look like when AI can actually operate in the environment rather than advise from outside it. Security operations have always required a special kind of person.

Read Post

LimaCharlie

Read more about Agentic SecOps: Build a security AI agent that automatically investigates detections

NSW Treasury Breach, ABAC, and Principals of Least Privilege

Apr 27, 2026 By Wade Barisoff In archTIS

Recent headlines heralded another unfortunate security breach: an employee of the NSW Treasury in Sydney, Australia, illegally downloaded more than 5,600 sensitive government documents, which were later recovered at his home. This was labeled a “significant cyber incident” by the NSW government and had been detected by an internal security monitoring tool that detected “movement of a large cache of documents”.

Read Post

archTIS

Read more about NSW Treasury Breach, ABAC, and Principals of Least Privilege

Is Your Official Vendor List a Lie?

Apr 27, 2026 By UpGuard In UpGuard

How many new vendors did your team engage with today? If you’re looking at your official procurement list, the answer might be zero. But if you’re looking at employee behavior, the reality is likely much higher. Find out more about the shadow supply chain in our most recent research report: Interested in finding out more about UpGuard?

View Video

UpGuard

Read more about Is Your Official Vendor List a Lie?

AI Agent Deleted My Production Database

Apr 27, 2026 By Teleport In Teleport

Securing AI agents in Teleport, focused on unified identity, eliminating standing privileges, and enforcing real policy controls instead of relying on the whims of an agent.

View Video

Teleport

Read more about AI Agent Deleted My Production Database

What Is Red Team Penetration Testing?

Apr 27, 2026 By Liz Sujka In Sedara

Red Team Penetration Testing is a simulated cyberattack that mimics real-world threat behavior to identify vulnerabilities, test defenses, and evaluate how effectively an organization can detect and respond to an attack. It goes beyond traditional testing by focusing on how an attacker would actually move through an environment.

Read Post

Sedara

Read more about What Is Red Team Penetration Testing?

What's the Biggest Mistake Companies Make During an Incident?

Apr 27, 2026 By CISO Global In CISO Global

Gary Perkins, CISO at CISO Global explains the biggest mistake companies make during an incident.

View Video

CISO Global

Security

Read more about What's the Biggest Mistake Companies Make During an Incident?

Crypto theft, Vercel breach, Mastodon attack, North Korean IT in US & cyber negotiator guilty [316]

Apr 27, 2026 By LimaCharlie In LimaCharlie

In this episode of The Cybersecurity Defenders Podcast, we discuss some intel being shared in the LimaCharlie community. Support our show by sharing your favorite episodes with a friend, subscribe, give us a rating or leave a comment on your podcast platform. This podcast is brought to you by LimaCharlie, maker of the SecOps Cloud Platform, infrastructure for SecOps where everything is built API first. Scale with confidence as your business grows.

View Video

LimaCharlie

Read more about Crypto theft, Vercel breach, Mastodon attack, North Korean IT in US & cyber negotiator guilty [316]

April 27, 2026 Emerging Threats Weekly

Apr 27, 2026 By Kroll In Kroll

This week’s briefing covers: The attack chain invokes two preparatory batch scripts before the final wiper stage. Those scripts disable services, enumerate users, change passwords, log off sessions, disable network interfaces and begin destructive actions with diskpart, robocopy and fsutil before the final payload is launched. Dive deeper.

View Video

Kroll

Read more about April 27, 2026 Emerging Threats Weekly

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The Configuration Drift Behind the Teams Helpdesk Breach

Introducing Atlas: a global age regulation tracker

Agentic SecOps: Build a security AI agent that automatically investigates detections

NSW Treasury Breach, ABAC, and Principals of Least Privilege

Is Your Official Vendor List a Lie?

AI Agent Deleted My Production Database

What Is Red Team Penetration Testing?

What's the Biggest Mistake Companies Make During an Incident?

Crypto theft, Vercel breach, Mastodon attack, North Korean IT in US & cyber negotiator guilty [316]

April 27, 2026 Emerging Threats Weekly

Monthly Archive

Follow Us