Tenable

AUGUST 4, 2022

Analyzing the Vulnerabilities Associated with the Top Malware Strains of 2021. International cybersecurity agencies issue a joint alert outlining the top malware strains of 2021. While malware is used for a variety of purposes, the government agencies point out that ransomware is a primary use case. CVE-2022-30190.

Malware 75

Malware Windows SMB Groups 75

Tenable

FEBRUARY 9, 2024

critical infrastructure through exploitation of known vulnerabilities Background On February 8, Fortinet published an advisory (FG-IR-24-015) to address a critical flaw in FortiOS, its network operating system. and international agencies. CISA, NSA and FBI warns of pre-positioning by Volt Typhoon in U.S.

Malware 122

Malware Authentication Infrastructure Analysis 122

Tenable

JANUARY 19, 2024

Find out why Uncle Sam is warning critical infrastructure facilities about drones made in China, while urging water treatment plants to beef up incident response plans. In addition, the latest on the Androxgh0st malware. 1 - Critical infrastructure orgs warned about using Chinese drones Here’s a warning from the U.S.

Infrastructure 72

Infrastructure Malware Government Technical Review 72

Infinidat

FEBRUARY 24, 2022

Is a Deep Cover “Cyber Spy” Lurking in Your Data Infrastructure? Thu, 02/24/2022 - 11:57. The answer is none, but most of the time enterprise organizations don’t even know that a cybercriminal has infiltrated their data center, network, storage, and servers, compromising their data infrastructure. Evan Doherty.

Infrastructure 96

Infrastructure Backup Data Malware 96

Tenable

FEBRUARY 9, 2024

The Volt Typhoon hacking gang is stealthily breaching critical infrastructure IT environments so it can strike on behalf of the Chinese government, cyber agencies say. critical infrastructure IT and operational technology security teams, listen up. Critical Infrastructure. ” Plus, ransomware gangs netted $1 billion-plus in 2023.

Weak Development Team 67

Weak Development Team Infrastructure Generative AI Artificial Inteligence 67

Tenable

MARCH 29, 2022

On March 15, CrowdStrike published technical details and a proof-of-concept for CVE-2022-0811, a vulnerability they have named cr8escape, in the CRI-O Container Engine for Kubernetes. CVE-2022-0811 is a container escape vulnerability in CRI-O that can lead to elevation of privileges. was released to address CVE-2022-0811.

Malware 52

Malware Policies Linux Open Source 52

Aqua Security

MARCH 28, 2022

First, the vulnerability shows up in the container image, not in the Kubernetes manifests, so it’s harder to spot with infrastructure-as-code (IaC) or admission control solutions. Second, it uses standard container image commands, so it’s not easily detected by malware scanning agents.

Malware 98

Malware Infrastructure 98

Lacework

SEPTEMBER 6, 2022

One of the only major changes in cybercriminal operations is who their victims are—today, instead of targeting individuals, they’re targeting critical infrastructure. So, why did this shift occur, and which types of critical infrastructure are most at risk? Critical infrastructure is organized into 16 different sectors.

Infrastructure 52

Infrastructure Industry Transportation Malware 52

Lacework

AUGUST 17, 2022

AWS re:Inforce was back in person in Boston for the 2022 edition. The conference features a couple of announcements from AWS—mainly Amazon GuardDuty’s support for scanning EBS volumes for malware and Amazon Detective’s support for Amazon EKS workload investigation. The one critical takeaway. I’m actually happy about that.

AWS 84

AWS Malware Programming Recruiting 84

Tenable

MARCH 3, 2023

Background As part of their #StopRansomware campaign, the Federal Bureau of Investigation and Cybersecurity and Infrastructure Security Agency have released a cybersecurity advisory (CSA) discussing the Royal ransomware group. Analysis When the threat actor behind Royal emerged in January 2022, it was using the ALPHV/BlackCat ransomware.

Groups 96

Groups Systems Review Technical Review Software Review 96

Tenable

FEBRUARY 24, 2023

technology employees in 2022, and the pay growth was even higher for cybersecurity architects and engineers, whose compensation benefitted from their highly specialized skills and the criticality of their jobs. in 2022 to $111,348, and, despite tech industry layoffs, tech unemployment stood at only 1.5% in 2022 to $96,379.

Security 98

Security Engineering Technical Review IoT 98

O'Reilly Media - Ideas

DECEMBER 6, 2022

The popularity of cryptojacking (mining cryptocurrency with malware planted in someone else’s applications) continues to rise, as the collapse in cryptocurrency prices makes legitimate mining unprofitable. A threat group named Worok is using steganography to hide malware within PNG images. Its intent is to detect vulnerabilities.

Artificial Inteligence 103

Artificial Inteligence Trends Blockchain Malware 103

Palo Alto Networks

DECEMBER 20, 2022

The European Union (EU) adopted the revised Network and Information Security Directive (NIS2) in November 2022. It is especially important in a time of growing geopolitical tensions and cyberattacks where European citizens and their economies depend on a stable and secure digital infrastructure.

Security 86

Security Infrastructure Report Network 86

Tenable

MAY 18, 2023

Background As part of the #StopRansomware campaign, the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA) in the U.S. Background As part of the #StopRansomware campaign, the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA) in the U.S.

Groups 98

Groups Systems Review Malware Technical Review 98

Tenable

AUGUST 25, 2023

government says public- and private-sector organizations alike must start getting ready now – especially critical infrastructure operators. The vast majority of enterprises polled – 95% – experienced multiple cyberattacks in the past 12 months, with phishing (74%), malware (60%) and software vulnerability exploits (50%) being the most common.

Malware 98

Malware Artificial Inteligence Open Source Artificial Intelligence 98

CIO

SEPTEMBER 7, 2022

Storage has emerged in 2022 as a strategic asset that the C-suite, not just the CIO, can no longer overlook. This means that every possession in a company’s storage estate needs to be cyber resilient, designed to thwart ransomware, malware, internal cyber threats, and other potential attacks. Reduce IT costs. Key takeaways.

Storage 246

Storage Organization Disaster Recovery Enterprise 246

Tenable

AUGUST 30, 2023

As part of the investigation, Mandiant discovered that attackers had been exploiting the vulnerability as a zero-day as early as October 2022. In these attacks, UNC4841 leveraged multiple backdoor malware families, dubbed SALTWATER , SEASPY , SEASIDE , SUBMARINE (DEPTHCHARGE), and WHIRLPOOL. Mandiant refers to this group as UNC4841.

Malware 115

Malware Software Review Systems Review Exercises 115

Hacker Earth Developers Blog

JANUARY 26, 2022

This tactic is much more cost-efficient than relocation as long as the software engineering or web design workflow is backed by proper administrative support, digital infrastructure, and the security of collaboration at a distance. David is a computer security researcher with over 17 years of experience in malware analysis.

Development Team Review 130

Development Team Review Technical Review Software Review Development 130

Tenable

SEPTEMBER 28, 2023

Cybersecurity and Infrastructure Security Agency (CISA) added eight vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog , including four vulnerabilities for Owl Labs Meeting Owl. CVE Description CVSSv3 CVE-2022-31459 Owl Labs Meeting Owl Inadequate Encryption Strength Vulnerability 7.4 On September 18, the U.S.

Malware 64

Malware Software Review Authentication Meeting 64

Lacework

MAY 20, 2022

CVE(s) (if available): CVE-2022-22954, CVE-2022-22955,CVE-2022-22956, CVE-2022-22957, CVE-2022-22958, CVE-2022-22959, CVE-2022-22960, CVE-2022-22961, CVE-2022-22972, CVE-2022-22973. For more details on Keksec , refer to Lacework Labs’ blogs and Github.

Malware 78

Malware IoT Authentication Network 78

Tenable

JANUARY 27, 2023

Background On January 27, ESET Research has published a thread on Twitter discussing its analysis of a new wiper malware used in a cyberattack in Ukraine. This new malware, dubbed "SwiftSlicer", was deployed in the target environment using Active Directory (AD) Group Policy. The #SwiftSlicer wiper is written in Go programing language.

Policies 52

Policies Groups Malware Windows 52

Tenable

FEBRUARY 24, 2022

We’re urging all orgs to put #ShieldsUp to: - Reduce the likelihood of a cyber intrusion - Quickly detect a potential intrusion - Ensure you’re prepared to respond - Maximize resilience 3/4 — Jen Easterly (@CISAJen) February 12, 2022. Critical Infrastructure.” The targeting activity spans from January 2020 through February 2022.

Government 145

Government Malware Groups Telecommunications 145

Tenable

DECEMBER 22, 2023

Yes, cyberattackers quickly leveraged GenAI for malicious purposes, such as to craft better phishing messages , build smarter malware and quickly create and spread misinformation. Here’s a telling stat: Roughly between mid-2022 and mid-2023, 90% of organizations suffered at least one identity breach.

Artificial Inteligence 76

Artificial Inteligence Technical Review Cloud Artificial Intelligence 76

Tenable

FEBRUARY 16, 2023

Background As part of their #StopRansomware campaign, the Federal Bureau of Investigations and Cybersecurity and Infrastructure Security Agency have released a joint Cybersecurity Advisory (CSA) in collaboration with South Korea's National Intelligence Service and Defence Security Agency. billion has been stolen or extorted. kr and xpopup[.]com.

Malware 53

Malware Systems Review Technical Review Healthcare 53

Tenable

JANUARY 12, 2023

Cloud providers’ IP addresses and open ports targeted with malware. After analyzing 2022 Q2 and Q3 data from its VirusTotal malware analysis service, Google found 6,000 malware samples actively communicating with Google Cloud Platform, Microsoft Azure and Amazon Web Services (AWS). Cloud compromise trends.

Cloud 52

Cloud Backup Malware Google Cloud 52

Tenable

DECEMBER 9, 2022

Get the latest on the anniversary of the Log4j crisis; OWASP’s top CI/CD risks; a surge of infostealer malware; the fund transfer fraud — business email compromise connection; and more! . Tenable found that, as of October 1, 2022: 72% of organizations remain vulnerable to Log4Shell. 3 - Attackers boost use of infostealer malware.

Software Review 52

Software Review SMB Malware Development Team Review 52

Palo Alto Networks

DECEMBER 22, 2022

On December 22, 2022, Gartner named Palo Alto Networks a Leader for the eleventh consecutive time in its Gartner® Magic Quadrant™ for Network Firewalls for 2022. of savings by removing redundant infrastructure, 30% faster security optimization, and 50% reduction in management workload. Nebula and PAN-OS 11.0

Firewall 70

Firewall IoT Malware SMB 70

Infinidat

OCTOBER 4, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) launched a new cybersecurity program to educate enterprises on how to stay cyber secure. For cyber resilience to be integrated as part of a larger cybersecurity solution, a cyber resilient storage architecture is needed to map to the broader data infrastructure.

Storage 72

Storage Development Team Review Malware Systems Review 72

Tenable

JANUARY 27, 2023

Then scan the latest list of top malware. That’s the main finding from the IoT Security Foundation’s fifth annual “ State of Vulnerability Disclosure Policy Usage in Global Consumer IoT in 2022 ” report. Learn all about how most IoT product makers lack vulnerability disclosure policies. And much more!

IoT 52

IoT Malware Policies Survey 52

Kaseya

OCTOBER 3, 2023

Due to its ability to detect new-age threats, like zero-day and fileless malware, that are stealthy enough to bypass conventional AV and AM solutions, EDR is a must-have in today’s increasingly dangerous cybersecurity environment. Why is EDR important? What type of threats does EDR protect against?

Malware 52

Malware Software Review Systems Review Technical Review 52

TechCrunch

MARCH 2, 2022

Cybersecurity and Infrastructure Security Agency (CISA) — part of the Department of Homeland Security — issued an unprecedented warning recommending that “all organizations — regardless of size — adopt a heightened posture when it comes to cybersecurity and protecting their most critical assets.”.

Industry 246

Industry Pharmaceuticals AWS Report 246

Tenable

MAY 25, 2023

Background On May 24, several international agencies — including the Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI) and the National Security Agency (NSA) in the U.S, Does Volt Typhoon use any malware? What are some of the geographical regions and industries targeted by Volt Typhoon?

Malware 52

Malware Windows Groups Internet 52

Kaseya

MAY 2, 2022

According to the trends over the last couple of years, this figure is expected to rise in 2022. However, given the volume of work that IT management entails, it can be very difficult for your IT team to have complete visibility of your IT infrastructure all of the time. And that’s why we have SOC. MDR vs. SOC.

Security 111

Security Systems Review Network Malware 111

Tenable

FEBRUARY 17, 2023

conducted in December 2022. Already, ChatGPT has reportedly been used by malicious actors to create malware and write legit-sounding phishing emails. warns about North Korea cyberattacks on critical infrastructure The U.S. and the U.K. David Bombal) 3 - U.S.

Weak Development Team 52

Weak Development Team ChatGPT Infrastructure Report 52

Prisma Clud

SEPTEMBER 21, 2023

Eliminating trust assumptions and implementing continuous verification, Zero Trust effectively reduces the risk of unauthorized access and lateral movement within cloud networks, protecting sensitive data, applications and infrastructure. References “2022 State of Cloud Native Security Report.” Palo Alto Networks.

Cloud 105

Cloud Network Policies Machine Learning 105

Palo Alto Networks

APRIL 28, 2021

New functionality increases automation and detection, simplifies compliance checks and deepens visibility into malware threats for containers and hosts. Enhanced malware analysis for hosts and containers with WildFire integration. Additionally, new anti-malware and exploit prevention capabilities cover hosts and containers.

Cloud 98

Cloud Malware Serverless Compliance 98

Tenable

SEPTEMBER 2, 2022

The quantum computing risk for critical infrastructure. 2 – All you ever wanted to know about CISOs in 2022. You can find answers to those – and many more – questions in the “ 2022 Global Chief Information Security Officer (CISO) Survey ” from executive search firm Heidrick & Struggles. 2 | Shift-left efforts falling short.

Security 52

Security Software Review Artificial Inteligence Technical Review 52