Cyber Security Informer

What is a Cyberattack? Types and Defenses

eSecurity Planet

JUNE 16, 2022

However, basic cybersecurity tools and practices, like patching , strong passwords , and multi-factor authentication (MFA), “can prevent 80 to 90% of cyberattacks,” said Anne Neuberger, deputy national security advisor for cyber and emerging technologies, during a White House press conference in Sept. Cyberattack Statistics.

Backups

Backups Ransomware Firewall Malware

macOS 11’s hidden security improvements

Malwarebytes

AUGUST 18, 2021

A deep dive into macOS 11’s internals reveals some security surprises that deserve to be more widely known. Introduction Disclaimers macOS 11’s better known security improvements Secret messages revealed? CPU security mitigation APIs The NO_SMT mitigation The TECS mitigation Who benefits from NO_SMT and TECS

Firmware

Firmware Architecture Risk Engineering

Best Encryption Software for 2022

eSecurity Planet

AUGUST 4, 2022

It’s been a couple of decades since data tapes delivered by trucks made encryption a standard enterprise cybersecurity practice. Yet even as technology has changed, sending and receiving data remains a major vulnerability, ensuring encryption’s place as a foundational security practice.

Encryption

Encryption Software Computers and Electronics Technology

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

BlackCat ransomware

CyberSecurity Insiders

FEBRUARY 25, 2022

Following trends observed last year by Alien Labs, the ransomware targets multiple platforms (Windows and Linux), and it uses additional code to infect VMware’s ESXi hypervisor. Key takeaways: The ransomware BlackCat is coded in Rust and was created in November 2021. Background.

Ransomware

Ransomware Encryption Malware Backups

Conti Ransomware Attacks Persist With an Updated Version Despite Leaks

Security Boulevard

MARCH 25, 2022

This blog will highlight the most recent changes to the ransomware and how Conti improved file encryption, introduced techniques to better evade security software, and streamlined the ransom payment process. In late January 2022, ThreatLabz identified an updated version of Conti ransomware as part of the global ransomware tracking efforts.

Ransomware

Ransomware Encryption Software Passwords

Brazilian trojan banker is targeting Portuguese users using browser overlay

Security Affairs

MAY 7, 2020

When malware initiates, it requests Google Drive documents for details on the C2’s IP address. In this sense, users should be aware of emails of this nature and never click on email links or open attachments in case of suspected malicious activity. The modus operandi of this piece of malware is not new in Portugal. Technical Analysis.

Banking

Banking Malware Phishing Social Engineering

IT threat evolution Q2 2022

SecureList

AUGUST 15, 2022

They inject the malware directly into the system memory, leaving no artifacts on the local drive that might alert traditional signature-based security and forensics tools. WinDealer’s man-on-the-side spyware. The attackers were using this to hide a last-stage Trojan in the file system.

Mobile

Mobile Ransomware Malware Encryption

Guarding Against Solorigate TTPs

eSecurity Planet

FEBRUARY 3, 2021

” In December, eSecurity Planet detailed FireEye’s initial findings , implications for the industry, and how to mitigate similar attacks. .” ” In December, eSecurity Planet detailed FireEye’s initial findings , implications for the industry, and how to mitigate similar attacks. Brief timeline of findings.

Software

Software Malware Authentication Penetration Testing

A new trojan Lampion targets Portugal

Security Affairs

DECEMBER 29, 2019

The use of a commercial protector known as VMProtector 3.x New trojan called ‘Lampion’ has spread using template emails from the Portuguese Government Finance & Tax during the last days of 2019. Last days of 2019 were the perfect time to spread phishing campaigns using email templates based on the Portuguese Government Finance & Tax.

Malware

Malware Internet Internet Antivirus

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Here are the top Twitter accounts to follow for the latest commentary, research, and much-needed humor in the ever-evolving information security space. Here are the top Twitter accounts to follow for the latest commentary, research, and much-needed humor in the ever-evolving information security space. Binni Shah | @binitamshah.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

Evolution of JSWorm ransomware

SecureList

MAY 25, 2021

From the massive outbreaks of 2017, such as WannaCry , NotPetya , and Bad Rabbit , a lot of ransomware actors have moved to the covert but highly profitable tactic of “big-game hunting” News of ransomware causing an outage of some global corporation’s services has now become commonplace. Introduction. Chronology.

Ransomware

Ransomware Encryption Malware Energy and Utilities

Types of Cyber Security Threats in 2020 and How to Prevent Them

Spinone

MAY 8, 2020

The threat landscape for businesses today is filled with many different security threats and attack vectors used by hackers and other malicious individuals. What are the types of cyber security threats? What’s more, most businesses are expanding the way they are using and ingesting data. What Is a Cyber Attack?

Cyber Attacks

Cyber Attacks Phishing Backups Ransomware

A CISO's Guide to a Good Night's Sleep

SecureWorld News

SEPTEMBER 30, 2020

While it is arguable which C-level executive position is the most stressful, poor CISO performance can be an end-game event for many businesses. And many of the items a CISO is responsible for are dependent on the threat landscape and the security posture of others. Enable and trust a strong lieutenant(s). You get the point.

CISO

CISO Penetration Testing Technology Antivirus

Coercing NTLM Authentication from SCCM

Security Boulevard

APRIL 13, 2022

SharpSCCM is a tool that can be used to demonstrate that this attack is possible against the current version of Microsoft Endpoint Configuration Manager (ConfigMgr). There are a lot of incredibly kind, active, knowledgeable, and supportive people there and I highly recommend joining if you share an interest in SCCM administration or security.

Authentication

Authentication Accountability Penetration Testing Software

Cyber Security Informer

What is a Cyberattack? Types and Defenses

macOS 11’s hidden security improvements

Webinars

Trending Sources

Best Encryption Software for 2022

Webinars

BlackCat ransomware

Conti Ransomware Attacks Persist With an Updated Version Despite Leaks

Brazilian trojan banker is targeting Portuguese users using browser overlay

IT threat evolution Q2 2022

Guarding Against Solorigate TTPs

A new trojan Lampion targets Portugal

Top Cybersecurity Accounts to Follow on Twitter

Evolution of JSWorm ransomware

Types of Cyber Security Threats in 2020 and How to Prevent Them

A CISO's Guide to a Good Night's Sleep

Coercing NTLM Authentication from SCCM

Stay Connected