Security Affairs

JUNE 2, 2022

“Such level of access would allow an adversary to cause irreparable damage to a system or to establish ongoing persistence that is virtually invisible to the operating system.” Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g. ” reads the post published by Eclypsium.

Firmware 102

Firmware Engineering Ransomware Malware 102

McAfee

APRIL 20, 2021

These evaluations are based on MITRE ATT&CK®, which is widely recognized as the de facto framework for tracking adversarial tactics and techniques. Adversarial Emulation . 100% visibility across the 10 major attack steps on Day 1 ( Carbanak ), and 100% visibility across the 10 major attack steps on Day 2 ( FIN7 ). .

Threat Detection 90

Threat Detection Cybersecurity Government Network Security 90

ForAllSecure

DECEMBER 20, 2022

Software application vulnerabilities fall into three different risk categories : Known Known : Known Knowns are identifiable risks that are known to lead to compromise. Unknown Unknowns present the greatest risk, because they enable adversaries to operate unnoticed for an extended period of time.

Risk 40

Risk Software 40

Security Boulevard

JANUARY 10, 2022

As Picus, we published a detailed blog post about the Tactics, Techniques, and Procedures (TTPs) used by HAFNIUM to target Microsoft Exchange Servers. Picus Threat Library includes five main threat categories. Ransomware is classified under Malicious Code category. Remote Code Execution. CVE-2021-27065. Remote Code Execution.

Cyber threats 141

Cyber threats Ransomware Risk Architecture 141

NopSec

OCTOBER 11, 2022

This blog post focuses on how to create a bridge / correlation between CVE, CAPEC, CWE and ATT&CK vulnerability and attack taxonomies for the purpose of better understanding attack vectors and methods. In addition, following CWE to CAPEC reveals several categories related to improper input handling and CAPEC-233: Privilege Escalation.

Software 52

Software IoT Cyber Attacks Social Engineering 52

eSecurity Planet

JANUARY 11, 2024

Ransomware remains just one of many different threats and as security teams eliminate key vectors of attack, adversaries will shift tactics. The Sophos X-Ops team highlighted the issue in a recent blog , which details how remote encryption evades multiple layers of network security. Which Unmanaged Devices Do Attackers Use?

Ransomware 120

Ransomware Encryption IoT VPN 120

Security Boulevard

JUNE 28, 2023

But all the while, the spy is in touch with the bad actor via communication with adversary “command and control” infrastructure to facilitate, control, and eventually execute the final phases of the attack. That’s where HYAS comes in.

Cybersecurity 59

Cybersecurity DNS Ransomware Malware 59

eSecurity Planet

AUGUST 12, 2021

The attack on the company highlights trends experts are seeing in the cybercrime world, including the increasing use of RaaS and the growing focus by hackers to focus on fewer large targets – a category Accenture fits in – that could bring in a greater financial return. LockBit Filling a Vacuum. ” Accenture Got Backup Right.

Ransomware 103

Ransomware Backups Cybercrime Artificial Intelligence 103

Cisco Security

FEBRUARY 25, 2022

ATT&CK, which stands for Adversary, Tactics, Techniques, and Common Knowledge, is a comprehensive knowledge base of adversary behaviors used by threat actors across the threat lifecycle. While ATT&CK takes on the perspective of the adversary, there was no documented set of defensive countermeasures, until now. .

Engineering 105

Engineering Technology Cybersecurity Internet 105

Security Boulevard

NOVEMBER 29, 2023

This blog post seeks to examine several of the key ideas presented in the paper, including research cited from HYAS Labs , the research arm of HYAS , and their work on AI-generated malware (specifically, BlackMamba ), as well as its more sophisticated – and fully autonomous – cousin, EyeSpy.

Artificial Intelligence 52

Artificial Intelligence Malware Risk Government 52

Centraleyes

FEBRUARY 13, 2024

This blog aims to serve as a guide to navigating the intricate terrain of cyber risk quantification, providing insights into its significance, methodologies, and the transformative impact it can have on organizational cybersecurity strategies. Understand the motives and capabilities of potential adversaries for accurate risk quantification.

Risk 52

Risk Cyber Risk Cybersecurity Penetration Testing 52

Security Boulevard

AUGUST 9, 2022

This blog is a follow-up to our recent publication which described the details of a large-scale phishing campaign targeting enterprise users of Microsoft email services. Beginning in mid-July 2022, ThreatLabz started observing instances of adversary-in-the-middle (AiTM) phishing attacks targeted towards enterprise users of Gmail.

Phishing 64

Phishing Authentication Passwords 64

CyberSecurity Insiders

OCTOBER 1, 2021

There are two general categories of threat: the accidental or the intended. Consider regularly using blog posts, emails, internal events or other mediums to reach a broader audience in different ways. There are several personas that can fit into the profile of an insider threat. Keep the training content fresh, fun and exciting.

Technology 136

Technology Phishing Risk Cybersecurity 136

McAfee

APRIL 28, 2020

In our recent Racing with Cozy Bear blog , we covered the concept of Time Based Security and highlighted the value protection brings to the defender. Adversaries are known to use them to bypass security controls since most of these programs are otherwise trusted. Figure 1 – Example of Block footnote. Sub-step 11.A.10

Technology 57

Technology 57

Security Boulevard

JULY 18, 2022

All of these apps were downloaded over 300k times combined and they typically fall into one of the following common categories: Communication. The following is the breakdown of the number of apps per category: The tools and communication were among the most targeted categories covering the majority of the Joker-infected apps.

Banking 98

Banking Malware Encryption Architecture 98

McAfee

MARCH 29, 2021

Likewise, XDR, the category of extended detection and response applications, is quickly becoming accepted by enterprises and embraced by Gartner analysts, because they “ improve security operations productivity and enhance detection and response capabilities.” ? appeared first on McAfee Blogs. Learn More. MVISION XDR.

Artificial Intelligence 53

Artificial Intelligence CISO Threat Detection Cybersecurity 53

The Last Watchdog

JUNE 4, 2019

If you are second-best, your adversary will beat you.” To date, DataTribe has co-founded nine startups, partnering with technology domain masters to create startups operating at the forefront of cybersecurity innovation and creating entirely new categories of products that did not exist previously. On average in the U.S,

Cybersecurity 193

Cybersecurity Computers and Electronics Technology Marketing 193

Anton on Security

FEBRUARY 5, 2024

That’s where this blog comes in. We’ll divide this list into categories and sprinkle in lessons we’ve learned from the trenches throughout. Most customers and industry observers consider features like threat detection and predictive adversary analysis to be the “holy grail” of AI-driven SIEM capabilities.

Threat Detection 100

Threat Detection Engineering Artificial Intelligence Risk 100

Webroot

APRIL 15, 2021

So it’s easy to see how the relationship can quickly become adversarial. These can be broken down into two categories: Blue Teams and Red Teams. appeared first on Webroot Blog. An MSPs intention is to NOT allow this to happen by putting up the right security posture through layered defenses. Types of testing.

Penetration Testing 83

Penetration Testing Social Engineering Security Defenses Marketing 83

NetSpi Executives

NOVEMBER 21, 2023

We created this glossary of terms to help anyone researching AI and ML to gain an understanding of discussions around Adversarial Machine Learning. ML can be further divided into different categories, such as supervised learning, unsupervised learning, and reinforcement learning, each suited for different types of learning tasks.

Artificial Intelligence 66

Artificial Intelligence Penetration Testing Engineering Architecture 66

NetSpi Executives

MARCH 5, 2024

2 EASM is useful in identifying unknown assets and providing information about the organization’s systems, cloud services and applications that are available and visible in the public domain and therefore could be exploited by an adversary. In fact, 67% of organizations have seen their attack surfaces expand in the last two years.

Penetration Testing 64

Penetration Testing Technology Marketing Mobile 64

Centraleyes

JANUARY 24, 2024

Common security concerns include adversarial examples, data poisoning, and intellectual property exfiltration. Bias categories—systemic, computational and statistical, and human-cognitive—highlight the multifaceted nature of bias. Secure and Resilient Ensuring the security and resilience of AI systems and their ecosystems is paramount.

Risk 52

Risk Artificial Intelligence Government Accountability 52

McAfee

SEPTEMBER 14, 2021

From a cyber-intelligence perspective, one of the biggest challenges is having information on the tools, techniques, and procedures (TTPs) an adversary is using and then keeping them up to date. Within ATR we typically monitor many adversaries for years and collect and store data, ranging from indicators of compromise (IOCs) to the TTPs.

Malware 144

Malware DNS Accountability Manufacturing 144

Centraleyes

MARCH 6, 2024

Define explicit data categories deemed unacceptable for inclusion in AI models. Robustness : AI-powered systems must be fortified against adversarial attacks to minimize security risks. By conducting thorough testing and validation, organizations can ensure that AI technologies function as intended and align with ethical standards.

Government 52

Government Artificial Intelligence Accountability Technology 52

CyberSecurity Insiders

DECEMBER 7, 2021

This blog was written by an independent guest blogger. I have divided my 2022 predictions into two categories. In recent years, hackers and nation state adversaries have gained a deeper knowledge of industrial control systems and how they can be attacked and how weaponized malware can be deployed. Strategic, and Tactical.

Cybersecurity 78

Cybersecurity IoT Artificial Intelligence Cyber threats 78

Security Boulevard

FEBRUARY 5, 2024

That’s where this blog comes in. We’ll divide this list into categories and sprinkle in lessons we’ve learned from the trenches throughout. Most customers and industry observers consider features like threat detection and predictive adversary analysis to be the “holy grail” of AI-driven SIEM capabilities.

Threat Detection 69

Threat Detection Engineering Artificial Intelligence Risk 69

McAfee

FEBRUARY 6, 2020

Our award-winning MVISION Cloud created the Cloud Access Security Broker (CASB) category nearly a decade ago. McAfee is proud to stand at their side even as our adversary pushes the limits of an equally Darwinian transformation of the threatscape. McAfee is proud to lead at the front of the cloud revolution.

Government 52

Government Marketing CISO Manufacturing 52

Security Boulevard

JANUARY 17, 2024

This blog post describes methods that SpecterOps consultants have researched to successfully circumvent this technology during offensive assessments. We categorize our suggested techniques into three categories: ingress, egress, and bypass. About Us Lance Cain is an Adversary Simulation Senior Consultant with SpecterOps.

DNS 64

DNS Penetration Testing Passwords Encryption 64

Digital Shadows

NOVEMBER 10, 2022

These potential incidents fall under four categories, brand protection, cyber threat, physical protection, and data leakage. Most incidents pertained to the cyber threat category, and included malicious webpages, marketplace listings, and exposed files.

Cyber threats 52

Cyber threats Media Social Engineering Mobile 52

NopSec

MARCH 25, 2019

Finally, we covered some common challenges encountered when designing machine learning systems, as well as adversarial machine learning in specific. In this blog post, we summarize the first part of that webinar, without going into the three specific applications and the challenges.

Cybersecurity 52

Cybersecurity Artificial Intelligence Phishing Malware 52

SecureList

DECEMBER 27, 2022

Based on the malware’s static information, and parts of the internal code, we assess that the final payload is still very similar to the Persistence Backdoor #2 [1] we described in our previous blog. The domain registration could be traced back to earlier in 2021, so this is an ongoing operation by the adversary. offerings.cloud.

Malware 132

Malware Banking Passwords Antivirus 132

ForAllSecure

JULY 21, 2020

And that all needs to be defended because when something's boring, it becomes very interesting for an adversary. So, the adversary sees it that way and they want to get into it, because there's probably something that they see and it's probably connected to something that they want. ROBERT: So there's definitely a social aspect here.

InfoSec 52

InfoSec Passwords Hacking Cybersecurity 52

ForAllSecure

JULY 21, 2020

And that all needs to be defended because when something's boring, it becomes very interesting for an adversary. So, the adversary sees it that way and they want to get into it, because there's probably something that they see and it's probably connected to something that they want. ROBERT: So there's definitely a social aspect here.

InfoSec 52

InfoSec Passwords Hacking Cybersecurity 52

Security Boulevard

APRIL 20, 2022

As the findings of the ThreatLabz 2022 Phishing Report reveal, the challenge is getting harder: adversaries are getting craftier, and attackers are growing in numbers due to pre-built phishing kits available on the darknet. For decades, phishing has been a complex and time-consuming challenge for every security team.

Phishing 115

Phishing Retail Risk Architecture 115

Security Affairs

JUNE 1, 2022

“If a sophisticated adversary could compromise a webmail server, they can intercept every sent and received email, access password-reset links, and sensitive documents, impersonate personnel and steal all credentials of users logging into the webmail service.” ” conclude the experts. Pierluigi Paganini.

Authentication 100

Authentication Passwords Hacking Cybersecurity 100

ForAllSecure

JULY 21, 2020

And that all needs to be defended because when something's boring, it becomes very interesting for an adversary. So, the adversary sees it that way and they want to get into it, because there's probably something that they see and it's probably connected to something that they want. ROBERT: So there's definitely a social aspect here.

InfoSec 52

InfoSec Passwords Hacking Cybersecurity 52

Security Affairs

SEPTEMBER 30, 2019

Yes, I have to confess, it was hard to wait all this time, but the reward it was worth it: unixfreaxjp is return, with a new, great page of reverse engeeniring published on the MalwareMustDie blog post: “ MMD-0064-2019 – Linux/AirDropBot ”.

IoT 88

IoT Malware Internet Internet 88