Pattern Leads: Singapore Servers a Factor in China Hack?
Set-up: A Chinese hacker group called Storm-0558 reportedly breached accounts inside more than 24 organizations, including U.S. State Department officials’ Microsoft accounts leading-up to Secretary Antony Blinken’s June trip to Beijing. The hackers exploited a validation coding error enabling them to forge Azure AD tokens using an acquired Microsoft account (MSA) consumer signing key, as…
Balloons: Identify Payload, Source, and Best Practices
The payload of an atmospheric balloon, at whatever elevation, is usually what the balloon is carrying beneath it. We should also consider whether what is inside the balloon itself may be part of the payload. If not done already we should figure out how to discern all payload information before shooting down balloons of possible…