Aqua Security

SEPTEMBER 15, 2022

The scripts and malware that were used bear a striking resemblance to none other than the threat actor TeamTNT. Over the past week we observed three different attacks on our honeypots. Eleven months ago they posted a farewell note on Twitter. Since then, we have only seen legacy attacks which automatically run on past infrastructure.

Malware 133

Malware Cloud Infrastructure 133

Aqua Security

FEBRUARY 1, 2023

Known as HeadCrab , this advanced threat actor utilizes a state-of-the-art, custom-made malware that is undetectable by agentless and traditional anti-virus solutions to compromise a large number of Redis servers. The HeadCrab botnet has taken control of at least 1,200 servers.

Malware 129

Malware Research Cloud 129

Palo Alto Networks

NOVEMBER 16, 2022

With the sophistication of today’s threat landscape, malware is more evasive than ever. Nova – the next evolution of network security that allows you to stop zero-day malware with zero stress. The Evolution of Modern Malware. Modern malware is increasingly evasive. Today, we’re announcing PAN-OS 11.0

Malware 107

Malware Firewall Cloud Network 107

Tenable

SEPTEMBER 12, 2023

What are the top 3 malware variants in Q2 2023? What matters most to security leaders in 2023? Why is CISA urging AI vendors to apply secure by design practices to software products? Here’s what’s happening in cyber. Watch this week’s episode below and subscribe to our playlist on YouTube.

Malware 64

Malware Software Video 64

Lacework

JULY 15, 2022

This ancient technique has found its place in the world of malware, namely hiding malicious code within other files including image formatted files ( T1027.003 ). General indicators and signatures for steg malware are provided in the hunting section. Steg malware is uncommon relative to other malware. Malware Details.

Malware 96

Malware Network Cloud Storage 96

SecureWorks

DECEMBER 9, 2022

Type: Blogs Drokbk Malware Uses GitHub as Dead Drop Resolver A subgroup of the Iranian COBALT MIRAGE threat group leverages Drokbk for persistence. A subgroup of the Iranian COBALT MIRAGE threat group leverages Drokbk for persistence.

Malware 98

Malware Groups Research 98

Lacework

MAY 12, 2022

Hunting for Malware. This resulted in numerous hits for Miria variants for various architectures demonstrating how quickly malware authors can adopt PoCs to distribute their malware. Lacework Labs is also beginning to see payloads associated with this vulnerability within their honeypots. Public-Facing BIG-IP Appliances.

Malware 96

Malware Technical Support Open Source Architecture 96

SecureWorks

MARCH 8, 2022

Type: Blogs Excel Add-ins Deliver JSSLoader Malware The GOLD NIAGARA threat group has expanded its tactics for delivering the JSSLoader RAT, spoofing legitimate Microsoft Excel add-ins to infect systems. Learn how CTU researchers observed multiple malicious Microsoft Excel add-ins delivering JSSLoader malware.

Malware 90

Malware Research Groups System 90

Darktrace

JANUARY 30, 2023

This blog post highlights the recent malvertising campaigns targeting Google searches that deploy info-stealer malware. It covers the attackers' techniques and provides a list of indicators of compromise. Recommendations for the general public are also included to help mitigate the risk of falling victim to such attacks.

Malware 85

Malware 85

CTOvision

JANUARY 9, 2022

Scalable automated malware analysis has become a critical component of enterprise defense. When properly implemented it can be key to mitigating malware threats that otherwise bypass perimeter defenses. It is based on an […].

Malware 128

Malware Scalability Analysis Enterprise 128

The Parallax

JANUARY 30, 2018

During a month that’s seen Android malware new and old plague the world’s most popular mobile operating system, Google says its Play Store is becoming more civilized and less like the Wild West. You have a lower probability of being infected by malware from Play than being hit by lightning,” Ahn says. READ MORE ON ANDROID SECURITY.

Malware 184

Malware Open Source Operating System Mobile 184

Symantec

FEBRUARY 16, 2023

Malware injects malicious code into Failed Request Event Buffering module in order to monitor HTTP requests from attacker.

Malware 98

Malware 98

Aqua Security

DECEMBER 2, 2020

Our cyber research team detected a new type of attack that executes and runs malware straight from memory in containers, thus evading common defenses and static scanning. We found four container images in Docker Hub designed to execute fileless malware attacks.

Malware 101

Malware Resources Research 101

Lacework

SEPTEMBER 30, 2021

Key Takeaways IoT malware is becoming more popular for use in cloud attacks Typical usage of TLS in IoT malware is rare, but has been observed in suspected state-sponsored campaigns Lacework Labs recently observed what is believed to be a targeted attack using a TLS enabled version of Mirai dubbed “scsihelper” IoT malware (typically used [.].

IoT 81

IoT Malware Cloud 81

TechBeacon

AUGUST 27, 2020

Phones branded “ Tecno ” —made by Shenzhen Transsion Holdings—appear to be preinstalled with malware. Smartphone users in emerging markets are being ripped off by suspiciously cheap handsets.

Malware 145

Malware Marketing Mobile 145

Strategy Driven

APRIL 11, 2023

As secure as Apple devices are, unfortunately, there’s no guaranteed way to ensure that they won’t fall foul of malware sneaking its way onto the devices from time to time. Adware Cleaner According to Apple , one of the easiest ways for spyware, trojans and malware in general to make their way onto devices is via Ads.

Malware 45

Malware Spyware Tools Applications 45

Aqua Security

AUGUST 17, 2020

Now, Tracee is much more than just a system call tracer , it’s a powerful tool that can be used to perform forensic investigations and dynamic analysis of binaries – both are incredibly useful when looking for hidden malware. Tracee can provide user s with timely insights that previously required special knowledge and tools.?.

Malware 134

Malware Open Source Analysis Tools 134

Lacework

OCTOBER 13, 2021

The post “Spytech Necro” – Keksec’s Latest Python Malware appeared first on Lacework.

Malware 92

Malware Infrastructure Analysis Tools 92

Tenable

AUGUST 4, 2022

Analyzing the Vulnerabilities Associated with the Top Malware Strains of 2021. International cybersecurity agencies issue a joint alert outlining the top malware strains of 2021. While malware is used for a variety of purposes, the government agencies point out that ransomware is a primary use case. Background. Description.

Malware 75

Malware Windows SMB Groups 75

Darktrace

MARCH 22, 2023

Amadey Info-stealer malware was detected across over 30 customers between August and December 2022, spanning various regions and industry verticals. This blog highlights the resurgence of Malware as a Service (MaaS) and the leveraging of existing N-Day vulnerabilities in SmokeLoader campaigns to launch Amadey on customers’ networks.

Malware 59

Malware Analysis Network Research 59

Lacework

FEBRUARY 27, 2023

James CondonDirector of Research, Lacework Labs This malware sample may unlock your variable naming writer’s block. Have you ever tried using your favorite foods? We hadn’t either until we came across this one. This Bash script was seen following the Confluence exploits we recently blogged about.

Malware 52

Malware Research 52

Darktrace

OCTOBER 18, 2022

Recently Darktrace captured the whole kill-chain of an AutoIt malware compromise, from delivery via email to payload download and subsequent C2. AutoIt is a scripting language designed for general purpose development. However, like many freeware languages, it has been exploited for malicious intent.

Malware 69

Malware Development 69

Symantec

APRIL 28, 2019

SGX-based malware may not be as troublesome as believed. We'll explain why that is and how Symantec is ready to deal with such malware if they were to appear.

Malware 102

Malware 102

Dots and Bridges

JULY 23, 2021

The Ransomware and Malware Conundrum. This high-level session provides real answers for protection and prevention from Ransomware and Malware for an ever- expanding federal network enterprise. The Ransomware and Malware Conundrum – Hosted by Electrosoft and Capital Technology University. Electrosoft Services, Inc.

Malware 52

Malware Enterprise Virtualization Technology 52

Palo Alto Networks

JUNE 7, 2021

The Unit 42 cybersecurity consulting group published research on the first known malware targeting Windows containers, which was discovered by Unit 42 researcher Daniel Prizmant and named Siloscape. The post Unit 42 Discovers First Known Malware Targeting Windows Containers appeared first on Palo Alto Networks Blog.

Malware 86

Malware Windows Software Review Cloud 86

CTOvision

DECEMBER 30, 2020

A new strand of malware uses Word files with macros to download a PowerShell script from GitHub. This PowerShell script further downloads a legitimate image file from image hosting service Imgur […].

Malware 95

Malware 95

CTOvision

JANUARY 25, 2021

Cybersecurity firm Symantec has uncovered an additional piece of malware used in the SolarWinds attacks, becoming the fourth piece of malware associated with the wide-ranging compromise of the popular IT […].

Malware 79

Malware 79

TechBeacon

MARCH 19, 2020

From misinformation spread by your Facebook friends, through malware distribution, to the DDoS’ing of health agencies. The novel coronavirus is affecting the world of infosec.

Malware 105

Malware 105

CTOvision

MAY 1, 2019

Grimes explain 9 types of malware and how they can affect you on CSO Online : People tend to play fast and loose with security terminology. However, it’s important to get your malware classifications straight because knowing how various types of malware spread is vital to containing and removing them.

Malware 98

Malware How To 98

InfoQ Culture Methods

DECEMBER 7, 2020

The book Cybersecurity Threats, Malware Trends and Strategies by Tim Rains provides a overview of the threat landscape over a twenty year period. It provides insights and solutions that can be used to develop an effective cybersecurity strategy and improve vulnerability management. By Ben Linders, Tim Rains.

Malware 111

Malware Trends Strategy Development 111

DataRobot

JULY 20, 2021

Cyber and malware analysts have a critical role in detecting and mitigating cyberattacks. In this post, we show you how to build a malware detection model using the largest known dataset, SOREL-20M (Sophos/ReversingLabs-20 Million). Malware Use Case. They are collected from static and dynamic malware analysis (e.g.,

Malware 52

Malware Machine Learning Artificial Inteligence Analysis 52

Darktrace

SEPTEMBER 22, 2020

Darktrace’s Immune System recently detected Glupteba malware attempting to steal sensitive information from a government organization. This blog post details how targeted and autonomous actions from Darktrace Antigena would have contained the attack.

Malware 105

Malware Government Organization Data 105

Tenable

MAY 15, 2023

Curious to know the top malware strains for the first quarter of 2023? The top 5 malware strains that you need to know about. Interested in learning more about the Biden administration’s $140 million dollar investment in developing responsible AI? More on their efforts to ensure AI products are safe to use.

Malware 52

Malware ChatGPT Video Organization 52

Tenable

FEBRUARY 20, 2023

Also covered: What Chat GPT had to say about spy balloons, cybercriminals using it to write malware and 3 ways AI may impact the future of cybersecurity in the next five years. Malware: Cybercriminals are using Chat GPT to write malware. Want to know more about Chat GPT and exactly how it works? a cybersecurity concern?

ChatGPT 52

ChatGPT Malware 52

CTOvision

JANUARY 11, 2021

Cobalt Strike and Metasploit, two penetration testing toolkits usually employed by security researchers, have been used to host more than a quarter of all the malware command and control (C&C) […].

Malware 98

Malware Testing Research 98

Capgemini

JULY 16, 2021

The risks of malware. The harsh reality is that malware doesn’t only threaten data security – it can also have a direct impact on sustainability initiatives and impede enterprise climate targets. Malware can jeopardize the robust quality control procedures that ensure a product is being produced safely and meets standards.

Malware 52

Malware Sustainability Energy Infrastructure 52

Darktrace

JUNE 30, 2020

With cyber-attacks on the IoT devices becoming increasingly prevalent, this blog post details how Darktrace’s AI identified the Mirai malware in an Internet-connected CCTV camera, breaking down each stage of the attack life cycle.

Malware 59

Malware IoT Internet 59