Grafana GitHub token breach leads to extortion attempt
Microsoft rejects Azure vulnerability report, researcher disputes decision
Funnel Builder flaw actively exploited to steal payment data
Get the show notes here: https://cisoseries.com/cybersecurity-news-grafan-github-extortion-microsoft-rejects-azure-report-funnel-builder-flaw/
Thanks to our episode sponsor, ThreatLocker
ThreatLocker is extending Zero Trust beyond endpoint control. With their recent release of Zero Trust Network Access and Zero Trust Cloud Access, access isn’t based on credentials alone, it requires the right user, the right device, and the right conditions. Because as we’ve seen in recent large-scale CRM breaches, stolen credentials and misconfigurations can expose massive amounts of data. With ThreatLocker, nothing is exposed, and access is limited to exactly what’s needed. Learn more and start your free trial today at ThreatLocker.com/CISO.
Read the original article: