Information Security, Security Intelligence and Technology

Information Security

Security Intelligence

Technology

Finnish intelligence warns of Russia’s cyberespionage activities

Security Affairs

OCTOBER 3, 2022

The Finnish Security Intelligence Service ( SUPO ) warns Russia will highly likely intensify its cyber activity over the winter. The Finnish Security Intelligence Service ( Suojelupoliisi or SUPO ) warn of a highly likely intensification of cyberespionage activities conducted by Russia-linked threat actors over the winter.

Security Intelligence

Security Intelligence Manufacturing Cyber threats Accountability

Russia-linked Nobelium APT targets orgs in the global IT supply chain

Security Affairs

OCTOBER 25, 2021

NOBELIUM focuses on government organizations, non-government organizations (NGOs), think tanks, military, IT service providers, health technology and research, and telecommunications providers. ” states Microsoft.

Telecommunications

Telecommunications Technology Hacking Malware

Join 29,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Human-Centered Cyber Security Training: Driving Real Impact on Security Culture

MORE WEBINARS

Trending Sources

RevengeRAT and AysncRAT target aerospace and travel sectors

SC Magazine

MAY 14, 2021

Microsoft Security Intelligence earlier this week tweeted out that it has been tracking a campaign of remote access trojans (RATs) targeting the aerospace and travel industries with spear-phishing emails that distribute an actively developed loader, which then delivers RevengeRAT or AysncRAT. Photo by Joe Raedle/Getty Images).

Phishing

Phishing Scams Security Awareness Security Intelligence

Webinars

Human-Centered Cyber Security Training: Driving Real Impact on Security Culture

MORE WEBINARS

Demand, CyberInsurance, and Automation/AI Are the Future of InfoSec

Daniel Miessler

NOVEMBER 6, 2020

I think there are four main trends that will play out in the field of information security in the next 20 years. New IT platforms will require less configuration, have more security built in, will include continuous asset management, as well as continuous configuration monitoring. Image from information-age.com.

InfoSec

InfoSec Insurance Artificial Intelligence Cybersecurity

Canadian intelligence agencies CSE and CSIS are divided on Huawei 5G ban

Security Affairs

NOVEMBER 14, 2019

The Canadian Security Intelligence Service (CSIS) and the Communications Security Establishment (CSE) are divided over the ban of Huawei 5G technology. The Canadian Security Intelligence Service (CSIS) and the Communications Security Establishment (CSE) agencies are divided over the ban of Huawei 5G technology.

Government

Government Telecommunications Wireless Security Intelligence

Updated Kmsdx botnet targets IoT devices

Security Affairs

AUGUST 28, 2023

The Akamai Security Intelligence Response Team (SIRT) discovered a new version of the KmsdBot botnet that employed an updated Kmsdx binary targeting Internet of Things (IoT) devices. The malicious code was used in attacks targeting multiple sectors including the gaming industry, technology industry, and luxury car manufacturers.

IoT

IoT DDOS Architecture Internet

Microsoft found Shrootless bug in macOS that could bypass System Integrity Protection

Security Affairs

OCTOBER 28, 2021

Get details: [link] — Microsoft Security Intelligence (@MsftSecIntel) October 28, 2021. System Integrity Protection (also referred to as rootless) is a macOS security feature introduced in OS X El Capitan (2015) (OS X 10.11).

Security Intelligence

Security Intelligence Hacking Technology Software

HTML Smuggling technique used in phishing and malspam campaigns

Security Affairs

NOVEMBER 12, 2021

Attackers increasingly use HTML smuggling in phishing and other email campaigns to stealthily deliver threats, but Microsoft Defender Office 365’s detonation technology provides durable protection against this evasive delivery technique. — Microsoft Security Intelligence (@MsftSecIntel) July 23, 2021.

Phishing

Phishing Banking Passwords Firewall

Russia-linked IRIDIUM APT linked to Prestige ransomware attacks against Ukraine

Security Affairs

NOVEMBER 11, 2022

Get TTPs and protection info: [link] — Microsoft Security Intelligence (@MsftSecIntel) October 14, 2022. Sandworm (aka BlackEnergy and TeleBots ) has been active since 2000, it operates under the control of Unit 74455 of the Russian GRU’s Main Center for Special Technologies (GTsST).

Ransomware

Ransomware Telecommunications DNS Hacking

Vietnam-linked Bismuth APT leverages coin miners to stay under the radar

Security Affairs

DECEMBER 1, 2020

Learn how the group tried to stay under the radar using threats perceived to be less alarming: [link] — Microsoft Security Intelligence (@MsftSecIntel) November 30, 2020. New blog: The threat actor BISMUTH, which has been running increasingly complex targeted attacks, deployed coin miners in campaigns from July to August 2020.

Cryptocurrency

Cryptocurrency Antivirus Manufacturing Government

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

Today, c yber security incidents lead to significant damage, alarming organizations of all types and sizes in different geographic locations. The contemporary world has witnessed the rise of the Internet and global communication, and collaboration technologies, including mobile data use and the culture of bring your own device [BYOD].

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

Purple Lambert, a new malware of CIA-linked Lambert APT group

Security Affairs

APRIL 29, 2021

The Qihoo 360 experts claim that a CIA hacking unit, tracked as APT-C-39, has hacked organizations in the aviation, scientific research, oil, technology industries, it also targeted government agencies. If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Malware

Malware Hacking Government Telecommunications

Cloud-based security: SECaaS

eSecurity Planet

DECEMBER 30, 2020

To ease these burdens, SECaaS and SOCaaS vendors have emerged as cloud-based security as a service that can collect, analyze, and correlate your information from diverse systems and applications — turning former headaches into actionable information security intelligence. Security as a Service (SECaaS) .

Penetration Testing

Penetration Testing Cybersecurity Antivirus Network Security

Iran-linked APT groups continue to evolve

Security Affairs

NOVEMBER 17, 2021

Over the past year, Microsoft Threat Intelligence Center (MSTIC) has observed an evolution of the tools, techniques, and procedures employed by Iranian nation-state actors. Learn more from this blog summarizing these trends, as presented at #CyberWarCon : [link] — Microsoft Security Intelligence (@MsftSecIntel) November 16, 2021.

VPN

VPN Social Engineering Accountability Media

European firm DSIRF behind the attacks with Subzero surveillance malware

Security Affairs

JULY 28, 2022

The DSIRF website states the provide services “to multinational corporations in the technology, retail, energy and financial sectors ” and that they have “ a set of highly sophisticated techniques in gathering and analyzing information. The group targets entities in Europe and Central America with a surveillance tool dubbed Subzero.

Surveillance

Surveillance Malware Authentication DNS

Black Hat Asia 2022 Continued: Cisco Secure Integrations

Cisco Security

MAY 27, 2022

We can add additional commands, new forms of interactivity, and continue to enable NOC staff to get the information they need and take necessary action. The goal of orchestration is to make life simpler, whether it is by automating our interactions with technology or making those interactions easier for the user. .

Malware

Malware Accountability DNS Technology

Hackers Also Have Financial Reporting And Quotas :)

Security Boulevard

JUNE 18, 2022

I have west and south Taipei technology park. Each week, I must commit to stealing a much information and credit cards. Security breaches cause foreseeable financial damage to the organization. In many cases, more significant than the amount spent on combined network security, cloud security, and artificial intelligence.

Hacking

Hacking CISO Cybersecurity Banking

Cybersecurity Checklist for Political Campaigns

Lenny Zeltser

MAY 3, 2019

I formulated the advice above mostly based on the tactics used against 2016 and 2018 election campaigns in the United States, as publicly described by the news media, cybersecurity companies, and the U.S. government.

Cybersecurity

Cybersecurity Social Engineering Authentication Software

Recorded Future to Provide Free Access to Elite Intelligence Through New Browser Extension

Security Affairs

MAY 5, 2020

Level up Your Security Program With the Same Security Intelligence Used by the World’s Largest Governments and Many of the Fortune 1000. Designed to work where security professionals do, Express is compatible with most security websites and technologies, including Splunk, Tenable, Qualys, and IBM QRadar.

Security Intelligence

Security Intelligence Risk Advertising Malware

Cyber Security Informer

Finnish intelligence warns of Russia’s cyberespionage activities

Russia-linked Nobelium APT targets orgs in the global IT supply chain

Webinars

Trending Sources

RevengeRAT and AysncRAT target aerospace and travel sectors

Webinars

Demand, CyberInsurance, and Automation/AI Are the Future of InfoSec

Canadian intelligence agencies CSE and CSIS are divided on Huawei 5G ban

Updated Kmsdx botnet targets IoT devices

Microsoft found Shrootless bug in macOS that could bypass System Integrity Protection

HTML Smuggling technique used in phishing and malspam campaigns

Russia-linked IRIDIUM APT linked to Prestige ransomware attacks against Ukraine

Vietnam-linked Bismuth APT leverages coin miners to stay under the radar

Cyber Security Awareness and Risk Management

Purple Lambert, a new malware of CIA-linked Lambert APT group

Cloud-based security: SECaaS

Iran-linked APT groups continue to evolve

European firm DSIRF behind the attacks with Subzero surveillance malware

Black Hat Asia 2022 Continued: Cisco Secure Integrations

Hackers Also Have Financial Reporting And Quotas :)

Cybersecurity Checklist for Political Campaigns

Recorded Future to Provide Free Access to Elite Intelligence Through New Browser Extension

Stay Connected