Duo's Security Blog

NOVEMBER 20, 2023

“It took nearly 11 months (328 days) to identity and contain data breaches resulting from stolen or compromised credentials.” – IBM’s Cost of Data Breach Report 2023 I recently came across a 2012 article from CSO Online , and realized that it has been more than 11 years since the phrase “Identity is the new perimeter” was coined!

Threat Detection 133

Threat Detection Authentication Accountability Data breaches 133

Security Affairs

OCTOBER 10, 2018

This trend aimed at reducing threats from banking Trojans for PCs has been continuing in Russia since 2012. At present, only three criminal groups— Buhtrap2 , RTM , and Toplel —steal money from the accounts of legal entities in Russia. They account for 80% of all financial phishing sites.

Cyber Attacks 83

Cyber Attacks Banking Cyber threats Phishing 83

Security Boulevard

JULY 7, 2022

Specifically, they wanted to be able to automatically “harvest” tokens on a host as people connected, keeping the tokens usable for operators even after the associated account logged off. Our goal is to open a token handle linked to a logon session for a user account we want to preserve access for. Approaches.

Accountability 52

Accountability Social Engineering Authentication Engineering 52

SecureList

NOVEMBER 1, 2022

While its activities have been observed since 2012, its presence was only revealed in 2015 (Kaspersky was among the first to report it) and no public activity was recorded until January 2021. Adastrea is a brand-new account and defines itself as an independent group of specialists and researchers in cybersecurity. Final thoughts.

Malware 143

Malware Ransomware Spyware Encryption 143

SecureList

MARCH 1, 2021

In their campaigns to infect mobile devices, cybercriminals always resort to social engineering tools, the most common of these passing a malicious application off as another, popular and desirable one. For example, an attacker could log in to a victim’s Facebook account and post a phishing link or spread spam.

Mobile 141

Mobile Malware Adware Banking 141

Security Boulevard

APRIL 13, 2022

This can be done using a low-privileged account on any Windows SCCM client. Client push installation accounts require local admin privileges to install software on systems in an SCCM site, so it is often possible to relay the credentials and execute actions in the context of a local admin on other SCCM clients in the site. Background.

Authentication 52

Authentication Accountability Penetration Testing Software 52

Malwarebytes

MAY 14, 2021

There was a time when stolen gaming accounts were almost treated as a fact of life. Gaming accounts had an essence of innate disposability to them, even if this wasn’t the case (how disposable is that gamertag used to access hundreds of dollars worth of gaming content)? Customer support: compromised accounts all the way down.

Accountability 67

Accountability Authentication Passwords Social Engineering 67

SecureWorld News

JUNE 5, 2023

Specifically, the advisory highlights the utilization of social engineering techniques by DPRK state-sponsored cyber actors, with a focus on their hacking activities targeting think tanks, academia, and media organizations worldwide. At the forefront of these cyber threats is a group known as Kimusky.

Social Engineering 71

Social Engineering Engineering Government Cyber threats 71

SecureList

OCTOBER 17, 2023

The stolen cookies can be used later to remotely access victims’ email accounts. Spanish-speaking activity See above, “The most remarkable findings” Middle East Dark Caracal, a highly skilled threat group operating with nation-state level capabilities, has been conducting cyber-espionage campaigns since at least 2012.

Government 118

Government Malware VPN Manufacturing 118

eSecurity Planet

AUGUST 26, 2022

Today, both outsiders with the right social engineering skills and disgruntled personnel pose risks to sensitive data when network architectures fail to implement microsegmentation and advanced network traffic analysis (NTA). Identify threats and unusual activity faster to respond and remediate vulnerabilities.

Artificial Intelligence 113

Artificial Intelligence Network Security Firewall Architecture 113

SecureWorld News

NOVEMBER 4, 2021

In the digital world, bad actors are using social engineering methods to hack on behalf of the Iranian government, even threatening the 2020 U.S. Traditionally, these attacks put an emphasis on social engineering, finding innovative new ways to defraud end-users. election process. aerospace and satellite sectors.

Social Engineering 83

Social Engineering Government DDOS Engineering 83

Herjavec Group

AUGUST 26, 2021

They hack into their teacher’s account and leave messages making fun of him. Air Force research facility, discover a password “sniffer” has been installed onto their network, compromising more than 100 user accounts. banks using the Zeus Trojan virus to crack open bank accounts and divert money to Eastern Europe.

Cybercrime 135

Cybercrime Computers and Electronics Banking Hacking 135

The Last Watchdog

JULY 25, 2019

Meanwhile, details of Alexsey Belan’s Russian-backed escapades came to light in March 2017 when the FBI indicted Belan and three co-conspirators in connection with hacking Yahoo to pilfer more than 500 million email addresses and gain deep access to more than 30 million Yahoo accounts. presidential elections. It’s an arms race like no other.

IoT 171

IoT Hacking Banking Government 171