2020, Cybercrime and Security Intelligence

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Security Affairs

OCTOBER 10, 2020

Microsoft has uncovered Zerologon attacks that were allegedly conducted by the infamous TA505 Russia-linked cybercrime group. Microsoft spotted a series of Zerologon attacks allegedly launched by the Russian cybercrime group tracked as TA505 , CHIMBORAZO and Evil Corp. states Microsoft. We strongly recommend patching.

Cybercrime

Cybercrime Security Intelligence Authentication Banking

Microsoft warns about ongoing PonyFinal ransomware attacks

Security Affairs

MAY 27, 2020

pic.twitter.com/Q3BMs7fSvx — Microsoft Security Intelligence (@MsftSecIntel) May 27, 2020. Human-operated ransomware is a technique usually employed in nation-state attacks that is becoming very popular in the cybercrime ecosystem. — Microsoft Security Intelligence (@MsftSecIntel) May 27, 2020.

Ransomware

Ransomware Security Intelligence Encryption Advertising

Anubis, a new info-stealing malware spreads in the wild

Security Affairs

AUGUST 27, 2020

— Microsoft Security Intelligence (@MsftSecIntel) August 26, 2020. Anubis has been around since June when it appeared on several cybercrime forums. Anubis is deployed in what appears to be limited, initial campaigns that have so far only used a handful of known download URLs and C2 servers.

Malware

Malware Advertising Cryptocurrency Cybercrime

Microsoft warns TA505 changed tactic in an ongoing malware campaign

Security Affairs

FEBRUARY 2, 2020

Security experts from Microsoft have uncovered an ongoing p hishing campaign launched by the TA505 cybercrime gang (aka Evil Corp ) that is employing attachments featuring HTML redirectors for delivering malicious Excel docs. pic.twitter.com/mcRyEBUmQH — Microsoft Security Intelligence (@MsftSecIntel) January 30, 2020.

Malware

Malware Security Intelligence Banking Phishing

Microsoft, Italy and the Netherlands agencies warn of EMOTET campaigns

Security Affairs

SEPTEMBER 24, 2020

pic.twitter.com/POppQ51uMX — Microsoft Security Intelligence (@MsftSecIntel) September 22, 2020. ” #Emotet AAR for 2020/09/22: Well yesterday was kinda nuts with nearly 400 malspams received with the majority being attachment on 60/40 basis. Heaviest I can remember in some time. Shared templates in paste.

Malware

Malware Passwords Advertising Ransomware

Vietnam-linked Bismuth APT leverages coin miners to stay under the radar

Security Affairs

DECEMBER 1, 2020

New blog: The threat actor BISMUTH, which has been running increasingly complex targeted attacks, deployed coin miners in campaigns from July to August 2020. Learn how the group tried to stay under the radar using threats perceived to be less alarming: [link] — Microsoft Security Intelligence (@MsftSecIntel) November 30, 2020.

Cryptocurrency

Cryptocurrency Antivirus Government Manufacturing

Sysrv-K, a new variant of the Sysrv botnet includes new exploits

Security Affairs

MAY 15, 2022

Microsoft Security Intelligence team Microsoft reported that a new variant of the Sysrv botnet, tracked as Sysrv-K, now includes exploits for vulnerabilities in the Spring Framework and WordPress. — Microsoft Security Intelligence (@MsftSecIntel) May 13, 2022.

Security Intelligence

Security Intelligence Malware Backups Architecture

What a difference a year makes, or does it?

Webroot

OCTOBER 1, 2021

2020 was a year of immense change. In our 2020 Webroot Threat Report , our security experts made a series of predictions related to the threat landscape. Cybercrime is no longer a punishment-free crime.”. One thing is for certain – the world collectively witnessed the increase of digital interconnectivity.

Ransomware

Ransomware Backups Threat Reports Small Business

2022: The threat landscape is paved with faster and more complex attacks with no signs of stopping

Webroot

JANUARY 7, 2022

2020 may have been the year of establishing remote connectivity and addressing the cybersecurity skills gap, but 2021 presented security experts, government officials and businesses with a series of unpresented challenges. Ultimately, this means more critical vulnerabilities will impact individuals and businesses.

Cybercrime

Cybercrime Ransomware Phishing Cryptocurrency

Microsoft warns of a large-scale BEC campaign to make gift card scam

Security Affairs

MAY 8, 2021

Business email compromise (BEC) attacks represent a serious threat for organizations worldwide, according to the annual report released by FBI’s Internet Crime Complaint Center , the 2020 Internet Crime Report , in 2020, the IC3 received 19,369 Business Email Compromise (BEC)/Email Account Compromise (EAC) complaints.

Scams

Scams Manufacturing Security Intelligence Internet

Corona Mirai botnet spreads via AVTECH CCTV zero-day

Security Affairs

AUGUST 29, 2024

Akamai’s Security Intelligence and Response Team (SIRT) has detected a botnet campaign exploiting multiple previously known vulnerabilities and a newly discovered zero-day, tracked as CVE-2024-7029 (CVSS score: 8.7), in AVTECH CCTV cameras. . ” continues the report.

Firmware

Firmware Malware Security Intelligence Authentication

GUEST ESSAY: How SIEMS, UEBAs fall short in today’s turbulent threat landscape

The Last Watchdog

JULY 30, 2018

And the cost of damage directly related to cybercrime is adding up, expected to reach $6 trillion by 2021. billion connected things are expected to be in use by 2020. More devices connected to your network makes security scalability a critical capability for enterprises as they plan today for tomorrow’s challenges.

CISO

CISO Cyber Attacks Data collection Cybersecurity

Akamai dealt with an 800Gbps ransom DDoS against a gambling company

Security Affairs

APRIL 1, 2021

“The most recent extortion attack — peaking at more than 800 Gbps and targeting a European gambling company — was the biggest and most complex we’ve seen since the widespread return of extortion attacks that kicked off in mid-August 2020. reads the analysis published by Akamai. ” Likely DDoS extortion attacks. .

DDOS

DDOS Security Intelligence Hacking Cybersecurity

Meeting Customers Where They Are …. And Where They Don’t Want to Be

Cisco Security

SEPTEMBER 30, 2021

In addition to creating a complex and dynamic network, hybrid work expanded the attack surface exponentially, making networking and security difficult to manage—further fueling the cybercrime epidemic and opening the floodgates to additional cybersecurity-related challenges. Seeking a secure and simple solution.

Marketing

Marketing Firewall Cyber threats Cybercrime

Microsoft partnered with other security firms to takedown TrickBot botnet

Security Affairs

OCTOBER 12, 2020

link] — Microsoft Security Intelligence (@MsftSecIntel) October 12, 2020. In this blog, we detail the evolution of Trickbot, associated tactics, recent campaigns, and dive into the anatomy of a specific attack. ” reads the post published by Microsoft.

Malware

Malware Banking Advertising Financial Services

CSC Research Finds Third Parties Continue to Lay Groundwork for Malicious Activity Among Thousands of COVID-Related Domains

CyberSecurity Insiders

JANUARY 25, 2022

.–( BUSINESS WIRE )– CSC , a world leader in business, legal, tax, and domain security, today announced key findings from its new report, which found that nearly 500,000 web domains were registered since January 2020 containing key COVID-related terms. At CSC, we believe domain security intelligence is power.

Artificial Intelligence

Artificial Intelligence Phishing Technology DNS

7 Insights About Managing Cyber Risk You Can’t Afford To Miss

Jane Frankland

AUGUST 18, 2020

Security intelligence comes with a high pay off. When Accenture analysed 9 cutting-edge technologies that are helping to reduce cybercrime, and calculated their net savings: the total potential savings minus the required investment in each type of technology or tool, they found the figure amounted to almost USD 2.3

Cyber Risk

Cyber Risk Risk Cybersecurity Technology

Lawmakers Probe Early Release of Top RU Cybercrook

Krebs on Security

MARCH 15, 2022

A 2019 deep dive into Burkov’s hacker alias “K0pa” revealed he also was co-administrator of the secretive Russian cybercrime forum “ Mazafaka.” K0pa’s elevated status in the Russian cybercrime community made him one of the most connected malicious hackers ever apprehended by U.S. authorities. .

Cybercrime

Cybercrime Government Hacking Security Intelligence

Cyber Security Informer

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Microsoft warns about ongoing PonyFinal ransomware attacks

Trending Sources

Anubis, a new info-stealing malware spreads in the wild

Microsoft warns TA505 changed tactic in an ongoing malware campaign

Microsoft, Italy and the Netherlands agencies warn of EMOTET campaigns

Vietnam-linked Bismuth APT leverages coin miners to stay under the radar

Sysrv-K, a new variant of the Sysrv botnet includes new exploits

What a difference a year makes, or does it?

2022: The threat landscape is paved with faster and more complex attacks with no signs of stopping

Microsoft warns of a large-scale BEC campaign to make gift card scam

Corona Mirai botnet spreads via AVTECH CCTV zero-day

GUEST ESSAY: How SIEMS, UEBAs fall short in today’s turbulent threat landscape

Akamai dealt with an 800Gbps ransom DDoS against a gambling company

Meeting Customers Where They Are …. And Where They Don’t Want to Be

Microsoft partnered with other security firms to takedown TrickBot botnet

CSC Research Finds Third Parties Continue to Lay Groundwork for Malicious Activity Among Thousands of COVID-Related Domains

7 Insights About Managing Cyber Risk You Can’t Afford To Miss

Lawmakers Probe Early Release of Top RU Cybercrook

Stay Connected