Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Forescout

Forescout

R4IoT: When Ransomware Meets the Internet of Things

Sep 27, 2023 By Vedere Labs In Forescout

Originally published June 1, 2022 In mid-2022, Forescout Research – Vedere Labs developed R4IoT, a proof-of-concept that showed how IoT devices could become entry points for IT and further OT ransomware attacks. The original blog post, below, explains how we came to create R4IoT and why. Our 2023H1 Threat Review included ample evidence that cross-device attacks like R4IoT are now a reality.

Read Post
Forescout

When Solving the XDR Puzzle, Focus on the Problems You Must Fix

Sep 21, 2023 By Michael Bacon In Forescout
If you’re confused about cybersecurity tools and product categories, join the club. Security market confusion is a major side effect of years of increasingly sophisticated security threats and vendor innovation designed to prevent and respond to them. Add to that the growing use of AI and machine learning by both attackers and defenders and you have what can look like a vendor free-for-all.
Read Post

Forescout Research - Vedere Labs | About Us

Sep 13, 2023 By Forescout In Forescout
Forescout Vedere Labs studies what attackers are working towards by observing actual attacks in our sandboxes, on the Darknet and in our Adversary Engagement Environment. We analyze significant attacks and generate vulnerability and threat intelligence that is consumed by the Forescout Platform. We also create corresponding detection rules that are added to Forescout XDR to help ensure customers can protect their IT, OT, IoT and IoMT environments.
View Video

R4IoT: When Ransomware Meets IoT and OT | Forescout Research

Sep 13, 2023 By Forescout In Forescout
Forescout Research - Vedere Labs has released a demonstration, report and detailed playbook describing how organizations can protect themselves against R4IoT: a novel, proof-of-concept ransomware that exploits an IoT device to gain access and move laterally in an IT network and impact the OT network. This demonstration is backed by rigorous research into IT, OT and IoT asset vulnerabilities as well as current ransomware trends.
View Video
Forescout

2023H1 Threat Review: Vulnerabilities, Threat Actors and Malware

Sep 6, 2023 By Forescout Vedere Labs In Forescout
In a new threat briefing report, Forescout Vedere Labs looks back at the most relevant cybersecurity events and data between January 1 and July 31, 2023 (2023H1) to emphasize the evolution of the threat landscape. The activities and data we saw during this period confirm trends we have been observing in our recent reports, including threats to unmanaged devices that are less often studied.
Read Post
Forescout

Federal Agencies Face 9/30/23 Deadline to Submit Detailed Plan for Implementing 2021 Cybersecurity Executive Order

Sep 6, 2023 By Timothy Jones In Forescout
In mid-August, U.S. national security advisor Jake Sullivan sent a memo to cabinet secretaries of agencies outside the Pentagon dinging them for not complying with deadlines and steps in the 2021 Executive Order 14208 on Improving the Nation’s Cybersecurity. In doing so, he set a new timeclock ticking for submitting a detailed implementation plan by the end of September… just a few weeks away from this writing.
Read Post
Forescout

The Hidden Danger - Understanding and Defending Against Insider Threats

Aug 23, 2023 By Debojyoti Chakraborty In Forescout
Cyber threats do not always come from outside an organization. Insiders, including current and former employees, contractors and other business partners with authorized access to your network, systems or data can pose significant risk, damage your reputation or even cause financial losses and business disruption. Insider threat incidents are on the rise and organizations affected by them spend on average $15.4 million on mitigation efforts.
Read Post
Forescout

Rhysida Ransomware - Detecting a Significant Threat to Healthcare and Other Sectors

Aug 17, 2023 By Forescout Vedere Labs In Forescout
The Rhysida ransomware as a service (RaaS) group was first revealed in May 2023. Since then, the group has claimed 41 victims, including some high-profile ones such as the Chilean army and five educational institutions in the U.S. The group is also suspected to be behind the attack against Prospect Medical Holdings, which affected 17 hospitals and 166 clinics in the U.S., although Prospect is not listed as a victim on Rhysida’s website.
Read Post
Forescout

New TETRA:BURST Vulnerabilities Enable Attackers to Intercept and Inject Critical Radio Traffic - How to Mitigate Risk

Jul 24, 2023 By Forescout Vedere Labs In Forescout
On July 24, a group of researchers at Midnight Blue announced TETRA:BURST, a set of five new vulnerabilities affecting the TETRA standard for radio communication.
Read Post
Forescout

You're Not Hallucinating: AI-Assisted Cyberattacks Are Coming to Healthcare, Too

Jul 18, 2023 By Daniel dos Santos In Forescout
We recently published a blog post detailing how threat actors could leverage AI tools such as ChatGPT to assist in attacks targeting operational technology (OT) and unmanaged devices. In this blog post, we highlight why healthcare organizations should be particularly worried about this.
Read Post
Subscribe to Forescout

Copyright © 2024 OpsMatters™. All rights reserved.