SecureList

FEBRUARY 8, 2024

The developers of banking Trojan malware are constantly looking for inventive ways to distribute theirs implants and infect victims. What caught our attention was the sophisticated infection chain that makes use of various advanced technologies, setting it apart from known banking Trojan infections.

Banking 144

Banking Encryption Malware Technology 144

Cisco Security

JULY 14, 2021

What can we do? Most people probably know what ransomware is (if not, go here ). But how exactly does it work? What makes it so destructive? And once they’ve found their way into your business and encrypted your data and files, ransomware operators will demand substantial sums of money to restore them.

Ransomware 145

Ransomware Technology Government Phishing 145

SC Magazine

JANUARY 26, 2021

companies as a primary target of a new phishing scheme. Cybercriminals have been using a phishing kit featuring fake Office 365 password alerts as a lure to target the credentials of chief executives, business owners and other high-level corporate leaders. Based on the data distribution, CEOs in the U.S.

Phishing 118

Phishing Passwords Security Awareness Social Engineering 118

Malwarebytes

AUGUST 20, 2021

This blog post was authored by Hossein Jazi. In late July 2021, we identified an ongoing spear phishing campaign pushing Konni Rat to target Russia. In this blog post we provide on overview of this campaign that uses t wo different UAC bypass techniques and clever obfuscation tricks to remain under the radar. Attack overview.

Malware 145

Malware Encryption Phishing Authentication 145

Security Boulevard

APRIL 1, 2025

If you want a refresher on Wizs rise, take a look at this excellent write-up from the Cybersecurity Pulse by Darrin Salazar: Wizs $32B GTM Playbook: Unpacking the Formula (PartI) By contrast, at DeepTempo we build foundation LogLMs. Another example: imagine a database containing sensitive customer data.

Risk 52

Risk Internet Internet Cybersecurity 52

eSecurity Planet

AUGUST 16, 2021

A phishing campaign that Microsoft security researchers have been tracking for about a year highlights not only the ongoing success of social engineering efforts by hackers to compromise systems, but also the extent to which the bad actors will go to cover their tracks while stealing user credentials. Multiple Segments to Campaign.

Phishing 110

Phishing Social Engineering Passwords Engineering 110

Security Affairs

AUGUST 7, 2019

Delivery: The main question to try to answer on the delivery stage is: “How does OilRig evolve in threat delivery over time ?” According to reports it looks like the attacker group made a nice direction change between group_a and group_b time frames. T1386) and spread over spear phishing campaigns as shown on delivery section.

Computers and Electronics 104

Computers and Electronics Penetration Testing DNS Phishing 104

SecureList

JUNE 15, 2022

However, there is demand on the dark web not only for data obtained through an attack, but also for the data and services necessary to organize one (e.g., Experienced cybercriminals seek to ensure the continuity of their business and constantly need new data for initial access to corporate systems. Phishing attacks on employees.

VPN 130

VPN Accountability Ransomware Encryption 130

Centraleyes

APRIL 24, 2025

Cyberattacks, system failures, and data breaches arent IF scenariostheyre WHEN scenarios. Thats why the ability to quickly recover and adapt after an attack is what truly matters. What separates survivors from casualties is their ability to maintain business continuity and recover quickly. Breaches are inevitable.

Penetration Testing 52

Penetration Testing Cyber Insurance Insurance Risk 52

Security Boulevard

JUNE 14, 2023

What can we learn about threat attacker infrastructure in today’s multifaceted threat landscape? What are the best ways to protect our valuable networks, servers and devices? You can be 99% secure and then have that 1% be what takes the company down. This is what sets us apart and powers our cyber security solutions.

DNS 101

DNS Malware Financial Services Architecture 101

Security Boulevard

OCTOBER 12, 2021

The network perimeter refers to public-facing machines exposed to people outside an organization’s network, like public web servers or even public cloud services. These machines are usually the heaviest guarded against attacks: they are protected by firewalls and monitored for suspicious activities. Principle One: Zero Trust.

Social Engineering 78

Social Engineering Penetration Testing Authentication Phishing 78

SecureList

AUGUST 24, 2022

In its new attack, the actor initiated the infection chain sending a spear-phishing email containing a macro-embedded Word document. In this process, the actor abused a legitimate blog service to host a malicious script with an encoded format. Like other sophisticated adversaries, this group also updates its tools very quickly.

Malware 145

Malware Phishing Antivirus Media 145

McAfee

AUGUST 26, 2020

Ransomware is a type of malicious software that infects a computer and restricts users’ access to it and their data until a ransom is paid to unlock it. CTB –Locker , partly due to their business model, created hundreds of thousands of infections through phishing, making it the most dangerous ransomware family of 2016.

Artificial Intelligence 97

Artificial Intelligence Ransomware Social Engineering Internet 97

Security Boulevard

MARCH 31, 2022

Though Microsoft didn’t offer many officially released details on what occurred, we can examine how RedLine works to gain an understanding of what may have possibly occurred. What Is an Insider Threat? Data collection from FTP clients, IM clients. Passwords: An Easy Target. can become insider threats. Autocomplete fields.

Cybersecurity 98

Cybersecurity Social Engineering Passwords Malware 98

Malwarebytes

SEPTEMBER 14, 2022

From industry tips and best practices to the latest Malwarebytes product releases and how-tos, our Business newsletter is chock-full of the best of our business blog. In the medical industry for example, doctors in large hospitals use a virtual machine. Data is kept separate. Read more: What is endpoint protection?

Technology 90

Technology DNS Cyber Insurance Insurance 90

Security Boulevard

APRIL 22, 2025

By recognizing these gaps ahead of time, students can better interpret their exam experience, set realistic expectations for future consulting roles, better articulate their skills in interviews, and avoid drawing the wrong conclusions about what the certification does (or doesnt) prove to a technical recruiter.

Penetration Testing 52

Penetration Testing Engineering Risk Social Engineering 52

Malwarebytes

JANUARY 10, 2023

In this post, we’ll look at the 5 must-haves for K-12 cybersecurity. The most high profile of these attacks occurred during Labor Day weekend, when a ransomware gang breached the Los Angeles Unified School District and stole roughly 500 gigabytes of data. Anti-ransomware EDR. Maintains visibility and patching regularly.

Cybersecurity 91

Cybersecurity Education Ransomware Government 91

SecureList

NOVEMBER 1, 2022

These summaries are based on our threat intelligence research; and they provide a representative snapshot of what we have published and discussed in greater detail in our private APT reports. They are designed to highlight the significant events and findings that we feel people should be aware of.

Malware 145

Malware Ransomware Spyware Encryption 145

SecureList

JULY 28, 2022

These summaries are based on our threat intelligence research; and they provide a representative snapshot of what we have published and discussed in greater detail in our private APT reports. After looking at this campaign, we provided additional IoCs and analysis of the components used in these attacks. Chinese-speaking activity.

Malware 145

Malware Firmware Phishing Cryptocurrency 145

Security Boulevard

JUNE 1, 2022

One of the routine tasks operators regularly encounter on most engagements is data mining. While exactly what operators are after varies from environment to environment, there is one common target that everyone’s always interested in: passwords. A lot of things in machine learning are easier said than done. The Problem.

Passwords 85

Passwords Architecture Backups Phishing 85

Pen Test Partners

JANUARY 23, 2025

Anything from phishing emails to ransomware attacks, these threats can disrupt operations and compromise critical systems. This post is a guide to help small fleet owners and employees protect their systems and data, and build a stronger defence against cyberattacks. It’s about protecting systems and data from attacks.

Passwords 64

Passwords Phishing Cyber Attacks Media 64

SecureList

MAY 12, 2021

And finally, we conclude with a look at two high-profile ransomware brands: REvil and Babuk. No matter how much work we put into writing this report, before you start reading, make sure your data is backed up safely! And not without good reason. The threat may have been around a long time, but it’s changed.

Ransomware 145

Ransomware Encryption Malware Cybercrime 145

Thales Cloud Protection & Licensing

OCTOBER 28, 2020

How Ransomware attacks leverage unprotected RDPs and what you can do about it. As mentioned in my colleague Charles Goldberg’s blog post earlier this year, “ Stop Ransomware in its Tracks with Strong Data Security ,” ransomware attacks targeting enterprises in a variety of sectors have skyrocketed during the first half of 2020.

Ransomware 83

Ransomware Authentication Passwords Social Engineering 83

NopSec

MARCH 25, 2019

Spam detection, facial recognition, market segmentation, social network analysis, personalized product recommendations, self-driving cars – applications of machine learning (ML) are everywhere around us. In this blog post, we summarize the first part of that webinar, without going into the three specific applications and the challenges.

Cybersecurity 52

Cybersecurity Artificial Intelligence Phishing Malware 52

Spinone

DECEMBER 28, 2018

Organizations have chosen to run not only production virtual machines on top of cloud infrastructure but also business services such as email and file storage. Businesses today do not want to be among the growing list of victims of data compromise, data leakage, or other cybersecurity events.

Backups 69

Backups Technology Computers and Electronics Accountability 69

Security Boulevard

FEBRUARY 17, 2022

25 vulnerabilities to look out for in Node JS applications: Directory traversal, prototype pollution, XSSI, and more…. An application has many components: server-side logic, client-side logic, data storage, data transportation, API, and more. Today, let’s take a look at 25 of the most common vulnerabilities that affect Node.js

Authentication 105

Authentication Encryption Engineering Firewall 105

Thales Cloud Protection & Licensing

JULY 17, 2023

Every day it seems, breaking industry news reveals another story about how a criminal gang or hacker penetrated a website, database, or device by reverse engineering its defences, discovering a weakness, or by using a feature or tool in a way other than for what it was intended. How can we get a piece of that? It’s about trust and errors.

Phishing 62

Phishing Engineering Internet Internet 62

Pen Test Partners

NOVEMBER 26, 2024

TL;DR Take lessons learned from investigation, such as reviewing how emails evaded existing phishing controls to update anti-malware policies. Configure Defender for Office and Defender for Cloud Apps threat and alert policies to prevent and detect email-based attacks. What is the role of end users in detecting phishing?

Phishing 64

Phishing Malware Security Awareness Accountability 64

SiteLock

SEPTEMBER 29, 2021

REvil ransomware might look and sound strange, but it’s a common weapon used by cybercriminals to target unsuspecting businesses, steal sensitive data, and extort money from companies. So, what is REvil ransomware, exactly? Let’s take a look. What Is REvil? REvil Ransomware: What Is It Exactly?

Ransomware 52

Ransomware Computers and Electronics Backups Passwords 52

McAfee

MAY 19, 2020

In my last blog I talked about how we should define “zero day” and the many misuses which in my view muddy the waters, making it ever more difficult to address the actual problem. To understand more about machine learning in general try reading this blog written by one of my colleagues.

Malware 52

Malware Software Education Marketing 52

NopSec

APRIL 7, 2019

Spam detection, facial recognition, market segmentation, social network analysis, personalized product recommendations, self-driving cars – applications of machine learning (ML) are everywhere around us. Even though it need not be malicious in nature, spam could include phishing or malware spreading. Source: [link].

Cybersecurity 52

Cybersecurity Data breaches Malware Risk 52

Security Affairs

DECEMBER 29, 2019

Last days of 2019 were the perfect time to spread phishing campaigns using email templates based on the Portuguese Government Finance & Tax. Regarding a broad analysis, it looks like the Trojan-Banker.Win32.ChePro The malware was named ‘Lampion’ as this is the name used as part of its internal name. Lampion trojan (P-19-2.dll)

Malware 98

Malware Internet Internet Antivirus 98

Centraleyes

AUGUST 12, 2024

But that’s for a different blog. CVSS primarily focuses on the severity of a given vulnerability and does not account for the likelihood of the vulnerability being exploited within a particular environment or an organization’s unique circumstances. It does not provide the full picture needed for comprehensive risk management.

Risk 52

Risk Cybersecurity Cyber Risk Cyber threats 52

Centraleyes

OCTOBER 17, 2024

What is Threat Intelligence? It encompasses data on threat actors, their tactics, techniques, and procedures (TTPs), and their potential impact on the organization. What tactics are being used? Effective threat intelligence platforms (TIPs) excel in turning this data deluge into actionable insights.

Threat Detection 52

Threat Detection Cyber threats Risk Artificial Intelligence 52

Security Boulevard

JULY 30, 2024

It monitors and controls access to internet content, emails, and other digital data based on specific rules, much like a vigilant security guard who ensures only authorized individuals gain entry. The internet is a vast landscape filled with potential threats, from phishing sites to malware.

DNS 64

DNS Cyber threats Artificial Intelligence Software 64

Troy Hunt

MAY 5, 2025

that's where the problem lies, and I demonstrated this just recently, not intentionally, but rather entirely by accident when I fell victim to a phishing attack. Here's how it worked: I was socially engineered into visiting a phishing page that pretended to belong to Mailchimp who I use to send newsletters for this blog.

Passwords 323

Passwords Authentication Phishing Password Management 323

Digital Shadows

AUGUST 17, 2021

What is Phish(ing)? But, never mind the dozens of other reports and white papers about phishing that come out every year from security industry leaders, let’s take a look at the 2021 Verizon DBIR. Why should I care about Phish? The reason why phishing is still reigning supreme?

Phishing 52

Phishing Accountability Social Engineering Mobile 52