Malware

Play Ransomware: SafeBreach Coverage for US-CERT Alert (AA23-352A)

Dec 19, 2023 By Kaustubh Jagtap In SafeBreach

On December 18th, the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) issued an urgent advisory to highlight the ongoing malicious activities being conducted by the Play ransomware group.

Read Post

SafeBreach

Read more about Play Ransomware: SafeBreach Coverage for US-CERT Alert (AA23-352A)

Netskope Threat Labs Stats for November 2023

Dec 19, 2023 By Leandro Fróes In Netskope

Netskope Threat Labs publishes a monthly summary blog post of the top threats we are tracking on the Netskope platform. The purpose of this post is to provide strategic, actionable intelligence on active threats against enterprise users worldwide.

Read Post

Netskope

Read more about Netskope Threat Labs Stats for November 2023

ALPHV Site Taken Down by the FBI

Dec 19, 2023 By Shmuel Gihon In Cyberint

On December 19, 2023, the FBI successfully dismantled one of the ALPHV/BlackCat ransomware sites. The customary FBI banner now adorns its main page, while the other sites associated with the cybercrime gang remain operational. This development may be linked to the recent 5-day disruption of the entire gang’s Darknet infrastructure.

Read Post

Cyberint

Read more about ALPHV Site Taken Down by the FBI

Unique Malware Used in Cyber Attacks Increases by 70% in Just One Quarter

Dec 18, 2023 By Stu Sjouwerman In KnowBe4

As more cybercriminal gangs continue to enter the game, the massive increase in unique types of malware means it will become increasingly difficult to identify and stop attacks. Blackberry just put out their Global Threat Intelligence Report in November, covering June through August of this year. According to the report, the number of attacks identified and stopped in the three-month period covered equates to an average of 26 attacks per minute.

Read Post

KnowBe4

Read more about Unique Malware Used in Cyber Attacks Increases by 70% in Just One Quarter

Conversations with Charlotte AI: "What is my exposure to vulnerabilities used by Scattered Spider?"

Dec 18, 2023 By CrowdStrike In CrowdStrike

With Charlotte AI, the information security analysts need to stop breaches is simply a question away. Watch how analysts are turning hours of work into minutes and seconds - getting the context they need to harden their environment against vulnerabilities that adversaries like Scattered Spider exploit.

View Video

CrowdStrike

Read more about Conversations with Charlotte AI: "What is my exposure to vulnerabilities used by Scattered Spider?"

Detect & Recover From VM Encryption Attacks With Rubrik

Dec 18, 2023 By Rubrik In Rubrik

Did you know that last year, 73% of encryption attacks occurred at the hypervisor layer, rather than the filesystem? In this video, Technical Marketing Architect Kev Johnson shows how Rubrik Security Cloud can detect and recover your workloads from just such an attack.

View Video

Rubrik

Read more about Detect & Recover From VM Encryption Attacks With Rubrik

Behind the Scenes: JaskaGO's Coordinated Strike on macOS and Windows

Dec 18, 2023 By Ofer Caspi In AT&T Cybersecurity

In recent developments, a sophisticated malware stealer strain crafted in the Go programming language has been discovered by AT&T Alien Labs, posing a severe threat to both Windows and macOS operating systems. As of the time of publishing of this article, traditional antivirus solutions have low or even non-existent detection rates, making it a stealthy and formidable adversary.

Read Post

AT&T Cybersecurity

Read more about Behind the Scenes: JaskaGO's Coordinated Strike on macOS and Windows

Honeypot Recon: MySQL Malware Infection via User-Defined Functions (UDF)

Dec 14, 2023 By Trustwave In Trustwave

In the vast world of cybersecurity, as technologies evolve, so do the methods attackers employ to compromise systems. One such intriguing method that recently surfaced is MySQL servers, leveraging SQL commands to stealthily infiltrate, deploy, and activate malicious payloads. Let's delve deeper into the MySQL bot infection process and explore the intricacies of its operation.

Read Post

Trustwave

Read more about Honeypot Recon: MySQL Malware Infection via User-Defined Functions (UDF)

Defend yourself and your vendors against ransomware

Dec 14, 2023 By UpGuard In UpGuard

Join Greg Pollock, our VP of BreachSight, as he talks about the most prolific ransomware group, Lockbit, and how to keep yourself secure from ransomware attacks.

View Video

UpGuard

Read more about Defend yourself and your vendors against ransomware

What Is Ransomware as a Service?

Dec 13, 2023 By Tim Tran In Keeper

Ransomware as a Service (RaaS) is a business model in which cybercriminals develop and sell ransomware to buyers known as affiliates who use it to execute ransomware attacks. Ransomware is a type of malware that prevents users from accessing their data or devices by encrypting them and locking users out until a ransom is paid. Typically, cybercriminals need to know some coding to develop and execute ransomware attacks.

Read Post