ioc[.]one - OSINT Cyber Threat Intelligence Database

What They Didn’t Secure: SaaS Security Lessons from the World’s Biggest Breaches

Tags

maec-delivery-vectors:

Watering Hole

attack-pattern:

Data Direct Indirect Model Cloud Account - T1087.004 Cloud Account - T1136.003 Code Repositories - T1213.003 Code Repositories - T1593.003 Code Signing - T1553.002 Confluence - T1213.001 Credential Stuffing - T1110.004 Credentials - T1589.001 Dns - T1071.004 Dns - T1590.002 Domains - T1583.001 Domains - T1584.001 Exploits - T1587.004 Exploits - T1588.005 Hardware - T1592.001 Malware - T1587.001 Malware - T1588.001 Multi-Factor Authentication - T1556.006 Network Devices - T1584.008 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Serverless - T1583.007 Serverless - T1584.007 Software - T1592.002 Ssh - T1021.004 Tool - T1588.002 Vulnerabilities - T1588.006 Vulnerability Scanning - T1595.002 Brute Force - T1110 Code Signing - T1116 Connection Proxy - T1090 Powershell - T1086 Scripting - T1064 Third-Party Software - T1072 Default Credentials Scripting

Show in Graph

Common Information

Type	Value
UUID	22902a02-a399-42e7-be27-de42df043bde
Fingerprint	bd6a9d184d1376c1
Analysis status	DONE
Considered CTI value	1
Text language
Published	April 13, 2025, 10:21 a.m.
Added to db	April 13, 2025, 1:07 p.m.
Last updated	April 17, 2025, 11:19 p.m.
Headline	What They Didn’t Secure: SaaS Security Lessons from the World’s Biggest Breaches
Title	What They Didn’t Secure: SaaS Security Lessons from the World’s Biggest Breaches
Detected Hints/Tags/Attributes	177/2/13

Source URLs

	Redirection	Url
Details	Source	https://medium.com/@onur_okan/what-they-didnt-secure-saas-security-lessons-from-the-world-s-biggest-breaches-d7f73c42816f?source=rss------cybersecurity-5

URL Provider

Details	Provider	Source level domain
Details	medium.com	medium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	167	✔	Cybersecurity on Medium	https://medium.com/feed/tag/cybersecurity	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	CVE	143		cve-2022-26134
Details	Domain	14		cisecurity.org
Details	Domain	2		secureframe.com
Details	Domain	17		venturebeat.com
Details	Domain	40		darkreading.com
Details	Domain	1		netsecurity.com
Details	Domain	9		abnormalsecurity.com
Details	Domain	239		krebsonsecurity.com
Details	Domain	409		thehackernews.com
Details	Domain	181		bleepingcomputer.com
Details	Domain	6		isms.online
Details	Domain	6		cbsnews.com
Details	Domain	245		cert.europa.eu