Advanced Persistent Threats
-
Threat Intelligence
Microsoft-Signed Malicious Drivers Usher In EDR-Killers, Ransomware
Malicious drivers certified by Microsoft’s Windows Hardware Developer Program have been used to juice post-exploitation efforts by cybercriminals, Redmond warned…
-
Threat Intelligence
Microsoft Squashes Zero-Day, Actively Exploited Bugs in Dec. Update
Microsoft has released fixes for 48 new vulnerabilities across its products, including one that attackers are actively exploiting and another…
-
Threat Intelligence
Hackers Score Nearly $1M at Device-Focused Pwn2Own Contest
Security researchers and hackers demonstrated 63 zero-day vulnerabilities in popular devices at the latest Pwn2Own, exploiting printers from Canon, HP,…
-
Threat Intelligence
Security Flaw in Atlassian Products Affecting Multiple Companies
BENGALURU, December 13, 2022 — Researchers at CloudSEK observed that for Atlassian products – Jira, Confluence, and BitBucket, cookies are…
-
Threat Intelligence
Metaparasites & the Dark Web: Scammers Turn on Their Own
Cybercriminals are often seen as parasites, feeding off a wide swath of victims of every size and stripe. But as…
-
Threat Intelligence
Rash of New Ransomware Variants Springs Up in the Wild
Enterprise security teams can add three more ransomware variants to the constantly growing list of ransomware threats for which they…
-
Threat Intelligence
TikTok Banned on Govt. Devices; Will Private Sector Follow Suit?
Texas this week become the fifth US state to ban the TikTok app on government-owned devices over concerns about the…
-
Threat Intelligence
3 Ways Attackers Bypass Cloud Security
BLACK HAT EUROPE 2022 – London – CoinStomp. Watchdog. Denonia. These cyberattack campaigns are among the most prolific threats today…
-
Threat Intelligence
Google: Use SLSA Framework for Better Software Security
Organizations should implement the Supply Chain Levels for Software Artifacts (SLSA) framework when building software to ensure better software security…
-
Threat Intelligence
Iranian APT Targets US With Drokbk Spyware via GitHub
A subgroup of the state-backed Iranian threat actor Cobalt Mirage is using a new custom malware dubbed “Drokbk” to attack…