Finding and Fixing the Trojanized 3CX DesktopApp
Another supply chain attack requires an urgent response from security teams.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Shielding Critical Infrastructure: Conquering Ransomware with Keeper Security Government Cloud
The Biden Administration’s 35-page National Cybersecurity Strategy released in March 2023 emphasizes the growing importance of cybersecurity for both private companies and federal agencies. The strategy specifically highlights ransomware as a significant concern, particularly in terms of its impact on private companies that collaborate with the federal government or are critical to national security.
8 Dangerous Ransomware Examples
The threat of ransomware has been ever present in 2020, especially within the high-stakes industries like healthcare and those involved in the election. According to Verizon's 2019 Data Breach Investigations Report, 24% of security incidents that involved specific malware functionality exhibited ransomware functionality.
The Evolution of Qakbot: How Cato Networks Adapts to the Latest Threats
The world of cybersecurity is a never-ending battle, with malicious actors constantly devising new ways to exploit vulnerabilities and infiltrate networks. One such threat, causing headaches for security teams for over a decade, is the Qakbot Trojan, also known as Qbot. Qakbot has been used in malicious campaigns since 2007, and despite many attempts to stamp it out, continues to evolve and adapt in an attempt to evade detection.
Coffee Talk with SURGe: The Interview Series featuring Allan Liska
Join Coffee Talk with SURGe for our bi-weekly interview series. This week, SURGe member Shannon Davis interviews Allan Liska, threat intelligence analyst at Recorded Future and author of Ransomware: Understand. Prevent. Recover. They'll talk about the threat of ransomware, including recent trends, the impact of hack-back operations, and how organizations can become more resilient against attacks.
CTI Roundup: New CISA tool detects hacking activity in Microsoft cloud services
A joint advisory on LockBit 3.0 ransomware, CISA’s latest tool which detects hacking activity in Microsoft cloud services, and ScarCruft’s evolving arsenal.
Netskope Cloud Threats Memo: Cyber Espionage Campaign Abusing OneDrive and Dropbox
Legitimate cloud storage services are increasingly being exploited for cyber espionage, so the discovery of a similar operation in the context of the Russian invasion of Ukraine was just a matter of time.
RedLine Stealer strikes the hospitality industry
In recent times, the hospitality industry has experienced a surge in malicious emails aimed at their employees, particularly customer service personnel who handle customer emails. These emails were carefully crafted to elicit a sense of urgency and trick hotel staff into clicking and opening them, using social engineering tactics.
CyberTalk with Bill and Robin: 22nd March 2023
1.Hold your horses: Ferrari extorted by RansomEXX The italian sportscar manufacturer carmaker was contacted by a threat actor (RansomEXX) with a demand related to certain client contact details. Upon receipt of the ransom demand, Ferrari immediately started an investigation, however extortion is underway and 7GB of sensitive data has been allegedly leaked. How could this have been prevented?
Dridex malware, the banking trojan
Dridex, also known as Cridex or Bugat, is a banking Trojan that has been active since 2011. The malware is primarily used to steal sensitive information, such as login credentials and financial information, from victims. Dridex is known for its ability to evade detection by using dynamic configuration files and hiding its servers behind proxy layers.