Hello to all our Cyber Ghosts! Join host Selena Larson  as she chats with Eilon Bendet– Cloud Threat Researcher from Proofpoint. ​​From account takeovers to state-sponsored hacks, they uncover how cybercriminals are outsmarting traditional defenses – and why even multi-factor authentication might not be enough to keep them out. 

Together, they discuss the complexities of cloud threat detection, including the role of User and Entity Behavior Analytics (UEBA) in identifying suspicious activities and preventing account takeovers (ATO). Eilon breaks down two primary ATO threat vectors—credential-based brute force attacks and precision-targeted phishing campaigns. 

Also discussed:

how these groups exploit cloud environmentsconcerning trends such as the rise of reverse proxy-based toolkits and MFA bypass techniquesthe importance of identity-focused defense strategies and how threat actors customize tools to infiltrate cloud systems, steal data, and monetize compromised accounts
Resources mentioned:
MACT or malicious applications blog: MACT: Malicious Applications in Credible Cloud Tenants | Proofpoint US

For more information about Proofpoint, check out our website.

Subscribe & Follow:
Don’t miss out on future episodes—subscribe to the Discarded Podcast on your favorite platform.

Article Link: Under Siege: How Hackers Exploit Cloud Vulnerabilities

1 post – 1 participant

Read full topic

​Hello to all our Cyber Ghosts! Join host Selena Larson  as she chats with Eilon Bendet– Cloud Threat Researcher from Proofpoint. ​​From account takeovers to state-sponsored hacks, they uncover how cybercriminals are outsmarting traditional defenses – and why even multi-factor authentication might not be enough to keep them out. Together, they discuss the complexities of cloud threat detection, including the role of User and Entity Behavior Analytics (UEBA) in identifying suspicious activities and preventing account takeovers (ATO). Eilon breaks down two primary ATO threat vectors—credential-based brute force attacks and precision-targeted phishing campaigns. Also discussed:how these groups exploit cloud environmentsconcerning trends such as the rise of reverse proxy-based toolkits and MFA bypass techniquesthe importance of identity-focused defense strategies and how threat actors customize tools to infiltrate cloud systems, steal data, and monetize compromised accountsResources mentioned:MACT or malicious applications blog: MACT: Malicious Applications in Credible Cloud Tenants | Proofpoint USFor more information about Proofpoint, check out our website.Subscribe & Follow:Don’t miss out on future episodes—subscribe to the Discarded Podcast on your favorite platform.
Article Link: Under Siege: How Hackers Exploit Cloud Vulnerabilities
1 post – 1 participant
Read full topic