Backups, Data collection and Presentation

Hunting SMB Shares, Again! Charts, Graphs, Passwords & LLM Magic for PowerHuntShares 2.0

NetSpi Technical

NOVEMBER 14, 2024

For those interested in the previous PowerHuntShares release, here is the blog and presentation. The Results directory houses csv files containing all the computer, share, file, and permission data collected, including things like excessive privileges and stored secret samples. Let the pseudo-TLDR/release notes begin!

Passwords

Passwords Risk Data collection Backups

Questions about the Massive South African "Master Deeds" Data Breach Answered

Troy Hunt

OCTOBER 19, 2017

This week, I started looking into a large database backup file which turned out to contain the personal data of a significant portion of the South African population. Who Am I and Why Do I Have This Data? On March 14 this year, someone sent me a 27GB file called "masterdeeds.sql" which was a MySQL database backup file.

Data breaches

Data breaches Government Backups Internet

Happy 13th Birthday, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2022

Internal Revenue Service website for months: Anyone seeking to create an account to view their tax records online would soon be required to provide biometric data to a private company in Virginia — ID.me. Super Bowl Sunday watchers are treated to no fewer than a half-dozen commercials for cryptocurrency investing.

Cryptocurrency

Cryptocurrency Cybercrime Computers and Electronics Scams

Access Management is Essential for Strengthening OT Security

Thales Cloud Protection & Licensing

MAY 23, 2022

These systems are connected to and managed from the cloud to fine-tune performance, provide data analytics, and ensure the integrity of critical infrastructure across all sectors. Attacking OT systems presents a major threat not only to business disruption, but also to national economy and security. Healthcare sector.

Healthcare

Healthcare Ransomware Authentication Threat Reports

Unleashing the Power of a Security Data Lake

SecureWorld News

APRIL 3, 2023

This approach allows for multi-variant processing of the same data. This is the primary value of Data Lakes. The concept's popularity grew when data scientists noticed that traditional data stores presented challenges in solving novel problems. Viewing this data manually is unrealistic.

Unstructured Data

Unstructured Data Data collection Information Security Backups

Privacy predictions 2022

SecureList

NOVEMBER 23, 2021

Facebook (now Meta) moved towards more privacy for its users as well, providing end-to-end encrypted backups in WhatsApp and removing the facial recognition system in its entirety from Facebook. Here, we present some of our ideas about what key forces will shape the privacy landscape in 2022.

Government

Government Internet Internet Technology

Fixing Data Breaches Part 2: Data Ownership & Minimisation

Troy Hunt

DECEMBER 19, 2017

Data Collection Should be Minimised, Not Maximisation. In this case, the data was exposed by a real estate company, an organisation that 99.x% x% of people in that data breach had never had any interaction with and wouldn't have even heard of them before this. Let's go back to the cat forum scenario again.

Data breaches

Data breaches Data collection B2B Mobile

HermeticWiper: A detailed analysis of the destructive malware that targeted Ukraine

Malwarebytes

MARCH 4, 2022

The attack can be divided into several phases: Preparation, including: Installation of the additional driver (EaseUS) Disabling system features that may help in recovery, or in noticing of the attack Data collection: walking through NTFS structure, collecting sectors and files that are going to be overwritten. Data collection.

Malware

Malware Data collection Backups Ransomware

Two hacker groups attacked Russian banks posing as the Central Bank of Russia

Security Affairs

NOVEMBER 15, 2018

The backup channel for sharing information is email. MoneyTaker and Silence are two of the four most dangerous hacker groups that present a real threat to international financial organisations,” said Rustam Mirkasymov , Group-IB Head of Dynamic Analysis of malware department and threat intelligence expert.

Banking

Banking Computers and Electronics Phishing Cybercrime

Agentic AI vs Generative AI: SecOps Automation and the Era of Multi-AI-Agent Systems

Digital Shadows

MARCH 5, 2025

SOC Automation In security operations centers (SOCs), agentic AI plays a crucial role in automating processes and workflows , including alert enrichment, data collection, and contextualization. This may involve removing malicious files, patching vulnerabilities, or restoring systems from clean backups.

Artificial Intelligence

Artificial Intelligence Threat Detection Risk Architecture

Trusted relationship attacks: trust, but verify

SecureList

MAY 28, 2024

We present them here in the order they appear in the attack process. 7 Fulfilling attack objectives In most cases, the attackers launched ransomware in the target organization’s infrastructure ( Impact Data , Encrypted for Impact, T1486 ). Pay special attention to activity within your infrastructure outside of working hours.

VPN

VPN Accountability Passwords Antivirus

Education Sector has Seen a 44% Rise in Cyber Attacks Since 2021

CyberSecurity Insiders

OCTOBER 24, 2022

From banking to personal data collection, schools must ensure that their systems come with security features and that their employees comply with those security features. While researching COVID-19, hackers shut down UCSF’s epidemiology and biostatistics department demanding $3 million to get the system and data back.

Education

Education Cyber Attacks Cyber Insurance Insurance

A Full Guide to Achieving SOC 2 Certification for Startups

Centraleyes

NOVEMBER 16, 2023

Navigating the SOC 2 Audit Welcome to SOC 2 compliance , a crucial certification for safeguarding data security and trustworthiness in today’s digital landscape. This comprehensive guide, presented by Centraleyes, will walk you through the intricacies of SOC 2 certification, from understanding the audit process to achieving compliance.

Risk

Risk Data collection Accountability Backups

G Suite Security: Top 6 Risks to Avoid

Spinone

JULY 16, 2019

Through Backup and Sync service. Give them permission to manage your data, and it’s done – your files are enciphered. An automated backup on trusted cloud storages and preliminary risky apps audit can be your saviors in this case. They will alert you when the abnormal data migration occurs within your organization.

Risk

Risk Ransomware Phishing Passwords

The SOC 2 Compliance Checklist for 2023

Centraleyes

DECEMBER 10, 2023

In an era where data breaches and cybersecurity threats loom, a systematic and organized approach to SOC 2 preparation is necessary. To usher you through this multifaceted and rigorous process, we present a step-by-step checklist with valuable tips. Automation. A great compliance platform will automate the processes.

Risk

Risk Data breaches Software Information Security

The Hacker Mind Podcast: Hacking Behavioral Biometrics

ForAllSecure

NOVEMBER 18, 2021

So of course when I saw that some researchers were presenting a talk at SecTor 2021 in Toronto on defeating biometrics with artificial intelligence, well I knew I had to talk to them as well. Here is the crux of their presentation at SecTor. Once again you see how such a simple method can defeat biometrics.

Hacking

Hacking Authentication Artificial Intelligence Technology

The Hacker Mind Podcast: Incident Response in the Cloud

ForAllSecure

APRIL 4, 2023

There’s been a major data breach, and you’re booked on the next night flight out, at 6am. As you hustle to the airport, the team already onsite is collecting the log files and the backups as needed so that when you arrive you can begin the investigation. There are the servers you control. And other hardware.

Government

Government Technology Firewall Engineering

Top 5 CMMC Services MSPs Should Offer

Centraleyes

DECEMBER 12, 2024

Evaluate Cloud and Backup Security The security of your data is paramount. Enhance operational efficiency: Centraleyes automates data collection, risk assessment, and remediation planning, enabling providers to manage large portfolios with reduced manual effort and improved accuracy.

Small Business

Small Business Risk Cybersecurity Encryption

APT trends report Q2 2024

SecureList

AUGUST 13, 2024

The attackers were able to obtain more than 100TB of data, as well as disrupt the official websites and email services of organizations and wipe database servers and backups. The framework we presented in our report is, as far as we know, not publicly known.

Social Engineering

Social Engineering Malware Government Engineering

FinSpy: unseen findings

SecureList

SEPTEMBER 28, 2021

Based on the data collected by the Post-Validator, it is most likely that: The Post-Validator is deployed to ensure that the infected victim is the intended one. The C2 server operator manually analyzes data received from the victim and commands to either remove the Post-Validator or infect the machine with the Trojan.

Encryption

Encryption Malware Spyware Architecture

The Hacker Mind Podcast: Crimeware As A Service

ForAllSecure

OCTOBER 25, 2022

At the time of this podcast, Lockbit accounts for 40% of the ransomware present today and it hits both Windows and Linux machines. Vamosi: So ransomware started with like individuals being compromised and their data collected and $300 in Bitcoin and then it became commercialized to industries and so first ransomware.

Ransomware

Ransomware Encryption Cybercrime Government

Cloud Atlas seen using a new tool in its attacks

SecureList

DECEMBER 23, 2024

All data collected this way is saved in a TMP alternate data stream and forwarded to the C2 server by the VBShower::Backdoor component. The steps performed by the script are most likely needed to check if the backdoor is present and installed correctly.

Encryption

Encryption Penetration Testing Malware Phishing

Data collection cheat sheet: how Parler, Twitter, Facebook, MeWe’s data policies compare

Security Affairs

JANUARY 13, 2021

While these alt platforms largely position themselves as “free speech” alternatives, we at CyberNews were also interested in how these alt social platforms compare in terms of data collection. Users would need to read both Triller’s and Quickblox’ privacy policies to get a good idea of how their data is being collected and processed.

Data collection

Data collection Accountability Media Advertising

Cyber Security Informer

Hunting SMB Shares, Again! Charts, Graphs, Passwords & LLM Magic for PowerHuntShares 2.0

Questions about the Massive South African "Master Deeds" Data Breach Answered

Trending Sources

Happy 13th Birthday, KrebsOnSecurity!

Access Management is Essential for Strengthening OT Security

Unleashing the Power of a Security Data Lake

Privacy predictions 2022

Fixing Data Breaches Part 2: Data Ownership & Minimisation

HermeticWiper: A detailed analysis of the destructive malware that targeted Ukraine

Two hacker groups attacked Russian banks posing as the Central Bank of Russia

Agentic AI vs Generative AI: SecOps Automation and the Era of Multi-AI-Agent Systems

Trusted relationship attacks: trust, but verify

Education Sector has Seen a 44% Rise in Cyber Attacks Since 2021

A Full Guide to Achieving SOC 2 Certification for Startups

G Suite Security: Top 6 Risks to Avoid

The SOC 2 Compliance Checklist for 2023

The Hacker Mind Podcast: Hacking Behavioral Biometrics

The Hacker Mind Podcast: Incident Response in the Cloud

Top 5 CMMC Services MSPs Should Offer

APT trends report Q2 2024

FinSpy: unseen findings

The Hacker Mind Podcast: Crimeware As A Service

Cloud Atlas seen using a new tool in its attacks

Data collection cheat sheet: how Parler, Twitter, Facebook, MeWe’s data policies compare

Stay Connected