Normal view
Investigating suspicious AI workflows in Microsoft Entra Agent ID: Assistive agents
-
Red Canary
- Investigating suspicious AI workflows in Microsoft Entra Agent ID: Agentβs user account
Investigating suspicious AI workflows in Microsoft Entra Agent ID: Agentβs user account
Investigating suspicious AI workflows in Microsoft Entra Agent ID: Autonomous agents
Investigating server compromises with cgroups: A Linux DFIR primer
Essential Data Sources for Detection Beyond the Endpoint
Unit 42 highlights the need for a comprehensive security strategy that spans every IT zone. Explore the full details here.
The post Essential Data Sources for Detection Beyond the Endpoint appeared first on Unit 42.

AI and browser threats stand out in the 2026 Threat Detection Report
Moving up the Assemblyline: Exposing malicious code in browser extensions
Hunting for malicious OpenClaw AI in the modern enterprise
Breaking down a supply chain attack leveraging a malicious Google Workspace OAuth app
ChatGPT in your inbox? Investigating Entra apps that request unexpected permissions
Bring the Fight to the Edge: Turning Time Into an Advantage in OT Security
Unit 42 research reveals most OT attacks begin in IT. Learn how edge-driven defense stops threats early and turns dwell time into advantage.
The post Bring the Fight to the Edge: Turning Time Into an Advantage in OT Security appeared first on Unit 42.

Bun and done: The second coming of the Shai-Hulud worm
At Home Detection Engineering Lab for Beginners
![]()
| Niccolo Arboleda | Guest Author Niccolo Arboleda is a cybersecurity enthusiast and student at the University of Toronto. He is usually found in his home lab studying different cybersecurity [β¦]
The post At Home Detection Engineering Lab for Beginners appeared first on Black Hills Information Security, Inc..
Impacket Defense Basics With an Azure LabΒ
![]()
Jordan DrysdaleΒ // Overview The following description of some of Impacketβs tools and techniques is a tribute to the authors, SecureAuthCorp, and the open-source effort to maintain and extend the code. [β¦]
The post Impacket Defense Basics With an Azure LabΒ appeared first on Black Hills Information Security, Inc..
-
Black Hills Information Security, Inc.

- Geopolitical Cyber-Detection Lures for Attribution with Microsoft SentinelΒ
Geopolitical Cyber-Detection Lures for Attribution with Microsoft SentinelΒ
![]()
Jordan Drysdale // Summary! There are tons of security event management (SIEM) solutions available these days, but this blog will focus on Microsoft Sentinel. Sentinel is easy to deploy, logs [β¦]
The post Geopolitical Cyber-Detection Lures for Attribution with Microsoft SentinelΒ appeared first on Black Hills Information Security, Inc..



