CISA has issued an emergency directive in response to Midnight Blizzard, or Cozy Bear, a Russian threat actor targeting Microsoft email accounts. The group is extracting information to access Microsoft customer systems. Strict security measures, including strong passwords and multi-factor authentication, are strongly recommended by CISA for all organizations (Microsoft included).

  • Onno (VK6FLAB)
    link
    fedilink
    English
    27 months ago

    I think that zero trust is not enough.

    I think that you need to assume that you are going to be compromised and put processes and procedures in place before that happens to ensure business continuity.

    • The Stoned Hacker
      link
      English
      67 months ago

      im approaching zero trust as assume everything is compromised until you verify it is not