Underwriter Blog

Microsoft: Same Targets, New Playbooks - East Asia Threat Actors Employ Unique Methods

Microsoft: Same Targets, New Playbooks - East Asia Threat Actors Employ Unique Methods
June 3, 2024

Since June 2023, China and North Korea have advanced cyber and influence operations, targeting key regions, leveraging AI, and increasing cryptocurrency thefts.

Read More >

Tax Season and Cyber Security: What Cyber Criminals Want and Who They Target Most - Is It You?

Tax Season and Cyber Security: What Cyber Criminals Want and Who They Target Most - Is It You?
April 1, 2024

Explore tax season cybersecurity threats targeting vulnerable groups & tactics used by cyber criminals in phishing campaigns. Stay vigilant!

Read More >

Microsoft: Navigating Cyber Threats and Strengthening Defenses in the Era of AI

Microsoft: Navigating Cyber Threats and Strengthening Defenses in the Era of AI
February 29, 2024

Microsoft explores the potential of AI to enhance their security measures, unlock new and advanced protections, and build better software.

Read More >

Microsoft: Iran Surges Cyber-Enabled Influence Operations in Support of Hamas

Microsoft: Iran Surges Cyber-Enabled Influence Operations in Support of Hamas
February 8, 2024

Amid the October 7, 2023 Israel-Hamas war, Iran rapidly supported Hamas with targeted hacks and social media influence, evolving into a coordinated campaign against Israel by late October. All cyberattacks, real or fabricated, were paired with online influence operations

Read More >

Microsoft: Feeding From the Trust Economy - Social Engineering Fraud

Microsoft: Feeding From the Trust Economy - Social Engineering Fraud
February 1, 2024

A Microsoft article exposing the criminal art of phishing, delving into tactics like urgency, emotion, and habit manipulation. Explore the evolving landscape of Business Email Compromise (BEC) attacks and discover prevention strategies to outsmart social engineers and safeguard your digital life.

Read More >

Microsoft: Disrupting the Gateway Services to Cybercrime

Microsoft: Disrupting the Gateway Services to Cybercrime
January 18, 2024

Microsoft, with Arkose Labs, disrupts cybercriminal group Storm-1152 selling 750 million fraudulent accounts, safeguarding users from cyber threats.

Read More >

Microsoft: Russian Threat Actors Prepare to Seize on War Fatigue

Microsoft: Russian Threat Actors Prepare to Seize on War Fatigue
December 18, 2023

Microsoft's latest report details observed activities from March to October 2023, shedding light on cyber espionage, propaganda, and attacks on critical infrastructure.

Read More >

Microsoft: Holiday Season DDoS Defense - Your Guide to Staying Safe

Microsoft: Holiday Season DDoS Defense - Your Guide to Staying Safe
December 18, 2023

Shield your holiday season: A guide to protect against DDoS attacks during peak traffic. Stay safe online!

Read More >

Microsoft Digital Defense Report 2023: Ten Essential Insights

Microsoft Digital Defense Report 2023: Ten Essential Insights
December 1, 2023

Microsoft's Digital Defense Report 2023 unveils escalating cyber threats demanding immediate action. Insights reveal critical security practices and emphasize AI's role in leveling the field. Microsoft's data-driven approach and proactive measures guide 10 key strategies, from fundamental cyber hygiene to anticipating nation-state attacks, fostering collaboration, and addressing the shortage of cybersecurity professionals. Stay informed, stay secure.

Read More >

Microsoft, Amazon, and international law enforcement unite to fight tech support fraud

Microsoft, Amazon, and international law enforcement unite to fight tech support fraud
December 1, 2023

Microsoft, Amazon, and law enforcement unite against tech support fraud, conducting raids in India targeting illegal call centers impersonating them. Over $1 billion in losses to victims; joint effort aims to create a safer online space.

Read More >

Espionage Fuels Global Cyber Attacks

Espionage Fuels Global Cyber Attacks
October 13, 2023

Tom Burt - Corporate Vice President for Customer Security and Trust at Microsoft discusses a surge in global cyberattacks with diverse motivations, such as espionage, influence operations, and ransomware. Tom highlights trends in nation-state activities, including Russia's targeting of NATO allies and China's focus on defense and Belt and Road Initiative partners. The report emphasizes the growing role of AI in cyber defense and warns of threats like MFA fatigue attacks, underscoring the need for collective defense and international partnerships to combat cyber threats, especially in the context of upcoming elections.

Read More >

20 Years of Cybersecurity Awareness with Microsoft

20 Years of Cybersecurity Awareness with Microsoft
October 13, 2023

October is Cybersecurity Awareness Month, which is celebrating its twentieth anniversary. This month-long event is a global initiative that aims to raise awareness about the importance of cybersecurity and educate individuals and organizations on best practices to stay safe in the digital realm. The initiative is a collaboration between various organizations, including the National Cybersecurity Alliance and the United States Cybersecurity and Infrastructure Security Agency (CISA).

Read More >

Microsoft: Cyber Signals Issue 5 - State of Play

Microsoft: Cyber Signals Issue 5 - State of Play
September 7, 2023

Microsoft discusses the growing cybersecurity threats faced by high-profile sporting events, with a focus on the FIFA World Cup held in Qatar in 2022. This article emphasizes the diverse and complex nature of these threats, ranging from data breaches to ransomware attacks, and the vulnerabilities present in the interconnected networks of sporting environments. Microsoft's role in providing cybersecurity support during the World Cup is detailed, including proactive threat hunting and defense measures.

Read More >

Microsoft: A New Look at Business Email Compromise

Microsoft: A New Look at Business Email Compromise
May 29, 2023

Microsoft discusses the rise of business email fraud, the increasing sophistication of threat actors specializing in business email compromise (BEC), and recommends several measures to defend against BEC attacks.

Read More >

Proofpoint: 2023 Voice of the CISO

Proofpoint: 2023 Voice of the CISO
May 12, 2023

The world of cybersecurity has been busy this past year. Between escalating ransomware attacks, continuing geopolitical tensions in Russia and China, and new supply chain threats, CISOs have had their hands full. To understand the CISO mindset in this changing environment, Proofpoint surveyed more than 1,600 security leaders across the globe for their third annual Voice of the CISO report.

Read More >

AI & Threat Intelligence

AI & Threat Intelligence
May 1, 2023

John Lambert, Corporate Vice President & Distinguished Engineer for Microsoft Security Research outlines how bringing together the resources of threat intelligence and AI can amplify and accelerate the impact of defenders.

Read More >

International Women’s Day: The power of diversity to build stronger cybersecurity teams

International Women’s Day: The power of diversity to build stronger cybersecurity teams
March 8, 2023

Women are vital to the cybersecurity industry and have played—and will continue to play—a key role in advancing technology and cybersecurity. Vasu Jakkal Corporate Vice President, Security, Compliance, Identity, and Management for Microsoft reflects on the great innovations women have made over the years and some of the notable women that have driven technology forward throughout history.

Read More >

CISO's Gain False Confidence in the Calm After the Storm of the Pandemic

CISO's Gain False Confidence in the Calm After the Storm of the Pandemic
June 17, 2022

While CISOs may feel more confident in their security posture emerging from the pandemic, new research suggests that doesn't mean organizations are better prepared for large-scale attacks. Proofpoint VP & Global Resident CISO and NTSC Board Member, Lucia Milică details why CISO's may have adapted but vulnerabilities remain.

Read More >

Maintaining Cyber, Business Resilience in a Turbulent World

Maintaining Cyber, Business Resilience in a Turbulent World
May 23, 2022

Lucia Milica, VP & Global Resident CISO at Proofpoint contributes her thoughts on staying competitive and maintaining cyber and overall business flexibility in this uncertain environment.

Read More >

How Your Employee's Data Puts Your Business At Risk

How Your Employee's Data Puts Your Business At Risk
May 20, 2022

NTSC Board Member, Lucia Milica, Vice President & Global Resident CISO for Proofpoint, Inc. discusses how the data collected by the digital tools that your employees use is creating cybersecurity risks for your organization.

Read More >

New Cyber Attack Reporting will Lead to Greater Corporate Resilience

New Cyber Attack Reporting will Lead to Greater Corporate Resilience
March 23, 2022

NTSC Board Member and Vice President & Global Resident CISO at Proofpoint, Inc. shares her thoughts on the new cyber attack reporting requirements.

Read More >

Build a Stronger Cybersecurity Team through Diversity and Training

Build a Stronger Cybersecurity Team through Diversity and Training
January 31, 2022

Microsoft Security Product Marketing Manager Natalia Godyla talks with Heath Adams, Chief Executive Officer (CEO) at TCM Security about being a mentor, hiring new security talent, certifications, upskilling, the future of cybersecurity training.

Read More >

How CISO's are Preparing to Tackle 2022 -  Vasu Jakkal Corporate Vice President, Security, Compliance and Identity

How CISO's are Preparing to Tackle 2022 - Vasu Jakkal Corporate Vice President, Security, Compliance and Identity
January 31, 2022

The security landscape has continued to experience significant change and escalation. To continually understand the priorities and concerns of the cyber community, Vasu Jakkal Corporate Vice President, Security, Compliance and Identity, shares some of the insights Microsoft gathered to ensure their security leaders have the tools and resources they need to succeed in their important work.

Read More >

Protecting People from Recent Cyberattacks - Tom Burt Corporate Vice President, Customer Security Trust

Protecting People from Recent Cyberattacks - Tom Burt Corporate Vice President, Customer Security Trust
January 31, 2022

Microsoft’s DCU has been a pioneer in using this legal strategy against cybercriminals and, more recently, against nation-state hackers. On December 2, Microsoft filed pleadings with the U.S. District Court for the Eastern District of Virginia seeking authority to take control of the sites. Tom Burt, Corporate Vice President, Customer Security Trust, details Microsofts goal in taking down malicious infrastructure and outlines their efforts to improve the security of the eco system.

Read More >

The Final Report on NOBELIUM's Unprecidented Nation-State Attack

The Final Report on NOBELIUM's Unprecidented Nation-State Attack
January 31, 2022

In December 2021, Microsoft began sharing details with the world about what became known as the most sophisticated nation-state cyberattack in history. The last in a four-part video series, "Decoding NOBELIUM", Microsoft reflects on lessons learned on the NOBELIUM incident and how world-class threat hunters from Microsoft and around the industry came together to take on the most sophisticated nation-state attack in history.

Read More >