Internal threats

Opinion

Bluelisting – pros and cons

I’m sure most of us are familiar with allowlisting. It’s the idea of filtering applications (or e-mails, depending on the context it’s used in) and allowing those that are explicitly listed.

Reports

ToddyCat: your hidden email assistant. Part 2

An in-depth analysis of Umbrij, a new tool used by the ToddyCat APT group to compromise corporate email communications in Gmail. The attack targeted OAuth authorization tokens, allowing threat actors to gain access to Google services.