Security Affairs

MAY 22, 2020

Experts from the Microsoft Security Intelligence team provided some details on a new “massive campaign” using COVID-19 themed emails. Researchers from the Microsoft Security Intelligence team provided some details on a new massive phishing campaign using COVID-19 themed emails. macros in malware campaigns.

Security Intelligence 118

Security Intelligence Advertising Phishing Malware 118

Security Affairs

OCTOBER 3, 2022

The Finnish Security Intelligence Service ( SUPO ) warns Russia will highly likely intensify its cyber activity over the winter. The Finnish Security Intelligence Service ( Suojelupoliisi or SUPO ) warn of a highly likely intensification of cyberespionage activities conducted by Russia-linked threat actors over the winter.

Security Intelligence 142

Security Intelligence Manufacturing Cyber threats Accountability 142

Security Affairs

OCTOBER 6, 2020

The Zerologon vulnerability, tracked as CVE-2020-1472 , is an elevation of privilege that resides in the Netlogon. Administrators of enterprise Windows Servers have to install the August 2020 Patch Tuesday to mitigate “unacceptable risk” posed by the flaw to federal networks. We strongly recommend patching.

Authentication 136

Authentication Advertising Architecture Cyber Attacks 136

Security Affairs

FEBRUARY 2, 2020

pic.twitter.com/mcRyEBUmQH — Microsoft Security Intelligence (@MsftSecIntel) January 30, 2020. pic.twitter.com/1qnx3NmwiB — Microsoft Security Intelligence (@MsftSecIntel) January 30, 2020. In contrast, past Dudear email campaigns carried the malware as attachment or used malicious URLs.

Malware 103

Malware Security Intelligence Banking Phishing 103

Security Affairs

MAY 13, 2020

COVID-19 themed phishing campaigns recently observed by Microsoft was using messages with subject lines like “BUSINESS CONTINUITY PLAN ANNOUNCEMENT STARTING MAY 2020.” The emails in both campaigns use ARJ attachments that contain malicious executables disguised as PDF files.

Phishing 132

Phishing Advertising Banking Security Intelligence 132

Security Affairs

NOVEMBER 18, 2020

pic.twitter.com/YpUVEfmlUH — Microsoft Security Intelligence (@MsftSecIntel) November 16, 2020. — Microsoft Security Intelligence (@MsftSecIntel) November 16, 2020. The subdomain follows different formats but generally always contains the recipient’s username and org domain name.

Phishing 142

Phishing Social Engineering Passwords Security Intelligence 142

Security Affairs

MAY 4, 2020

pic.twitter.com/EbI8kxICQG — Microsoft Security Intelligence (@MsftSecIntel) May 4, 2020. The attachment is a ZIP archive containing the familiar ISO file carrying a malicious SCR file with misleading icon pic.twitter.com/o1FbMUbTBs — Microsoft Security Intelligence (@MsftSecIntel) May 4, 2020.

Small Business 137

Small Business Malware Manufacturing Security Intelligence 137

Security Affairs

MAY 20, 2021

Microsoft Security Intelligence researchers uncovered a malware campaign that is spreading a remote access trojan (RAT) tracked as STRRAT. pic.twitter.com/mGow2sJupN — Microsoft Security Intelligence (@MsftSecIntel) May 19, 2021. STRRAT RAT was first spotted in June 2020 by G DATA who documented its features.

Ransomware 144

Ransomware Malware Encryption Security Intelligence 144

Security Affairs

APRIL 30, 2020

— Microsoft Security Intelligence (@MsftSecIntel) April 28, 2020. ” reads the Tweet published by the Microsoft Security Intelligence team. . ” reads the Tweet published by the Microsoft Security Intelligence team.

Malware 126

Malware Security Intelligence Adware Social Engineering 126

Security Affairs

AUGUST 27, 2020

— Microsoft Security Intelligence (@MsftSecIntel) August 26, 2020. Anubis is deployed in what appears to be limited, initial campaigns that have so far only used a handful of known download URLs and C2 servers. The recently discovered malware only targets Windows systems, Microsoft detected it as PWS:MSIL/Anubis.G!MTB.

Malware 136

Malware Advertising Cryptocurrency Cybercrime 136

Security Affairs

OCTOBER 6, 2020

The alert published by CISA was based on data provided by the Multi-State Information Sharing & Analysis Center (MS-ISAC) and the CISA itself since July 2020. pic.twitter.com/POppQ51uMX — Microsoft Security Intelligence (@MsftSecIntel) September 22, 2020. ” reads that alert published by CISA.

Government 142

Government Banking Advertising Malware 142

The Last Watchdog

MARCH 9, 2020

I spoke with Trevor Daughney, vice president of product marketing at Exabeam , at the RSA 2020 Conference in San Francisco recently. Exabeam is a successful security vendor in the SIEM space. SIEMs have to be able to help the security analysts see and monitor different use cases like OT.”

IoT 179

IoT Technology Digital transformation Engineering 179

Security Affairs

JULY 18, 2020

The notorious Emotet went into the dark since February 2020, but now has surged back with a new massive spam campaign targeting users worldwide. Emotet AAR for 2020/07/17- Well played Ivan, I dont usually do a Friday report but I did one just for you <3. link] — Joseph Roosen (@JRoosen) July 18, 2020. TNW and Be safe!

Advertising 129

Advertising Malware Banking Security Intelligence 129

Security Affairs

FEBRUARY 8, 2025

Researchers from AhnLab Security Intelligence Center (ASEC) observed North Korea’s Kimsuky APT group conducting spear-phishing attacks to deliver forceCopy info-stealer malware. The group works under the control of the Reconnaissance General Bureau (RGB) foreign intelligence service.

Malware 72

Malware Phishing Security Intelligence Hacking 72

Security Affairs

SEPTEMBER 24, 2020

pic.twitter.com/POppQ51uMX — Microsoft Security Intelligence (@MsftSecIntel) September 22, 2020. ” #Emotet AAR for 2020/09/22: Well yesterday was kinda nuts with nearly 400 malspams received with the majority being attachment on 60/40 basis. Heaviest I can remember in some time. Shared templates in paste.

Malware 143

Malware Passwords Advertising Ransomware 143

Security Affairs

DECEMBER 1, 2020

New blog: The threat actor BISMUTH, which has been running increasingly complex targeted attacks, deployed coin miners in campaigns from July to August 2020. Learn how the group tried to stay under the radar using threats perceived to be less alarming: [link] — Microsoft Security Intelligence (@MsftSecIntel) November 30, 2020.

Cryptocurrency 136

Cryptocurrency Antivirus Manufacturing Government 136

Security Affairs

MAY 15, 2022

Microsoft Security Intelligence team Microsoft reported that a new variant of the Sysrv botnet, tracked as Sysrv-K, now includes exploits for vulnerabilities in the Spring Framework and WordPress. — Microsoft Security Intelligence (@MsftSecIntel) May 13, 2022.

Security Intelligence 98

Security Intelligence Malware Backups Architecture 98

The Last Watchdog

MAY 12, 2021

Consider that global spending on cloud infrastructure services jumped 32 percent to nearly $40 billion in the last quarter of 2020. The ones with strong security postures are shoring up their SIEM systems with updated orchestration and automated response tools. To start, the raw volume of permissions continues to rise exponentially.

Cloud Migration 214

Cloud Migration Accountability Software Internet 214

Malwarebytes

OCTOBER 8, 2021

2020 saw a huge rise in the popularity of XLM macros among malware peddlers, and that surge may have been the reason why Microsoft decided to roll out this change. In May 2020, Microsoft itself warned about a massive COVID-19 themed campaign that used emails with attachments containing malicious Excel 4.0 Disable manually.

Malware 139

Malware Security Intelligence 139

Security Affairs

MAY 8, 2021

Business email compromise (BEC) attacks represent a serious threat for organizations worldwide, according to the annual report released by FBI’s Internet Crime Complaint Center , the 2020 Internet Crime Report , in 2020, the IC3 received 19,369 Business Email Compromise (BEC)/Email Account Compromise (EAC) complaints.

Scams 121

Scams Manufacturing Security Intelligence Internet 121

Webroot

APRIL 21, 2021

Although cybercriminal activity throughout 2020 was as innovative as ever, some of the most noteworthy threat activity we saw came from the old familiar players, namely ransomware, business email compromise (BEC) and phishing. By September 2020, the average ransom payment peaked at $233,817. “In

Threat Reports 119

Threat Reports Phishing Ransomware Backups 119

Security Affairs

APRIL 18, 2020

pic.twitter.com/V2JcZg2kjt — Microsoft Security Intelligence (@MsftSecIntel) April 17, 2020. This week’s campaign uses several hundreds of unique macro-laced document attachments in emails that pose as message from a non-profit offering free COVID-19 test.

Malware 144

Malware Advertising Security Intelligence Phishing 144

Security Affairs

AUGUST 29, 2024

Akamai’s Security Intelligence and Response Team (SIRT) has detected a botnet campaign exploiting multiple previously known vulnerabilities and a newly discovered zero-day, tracked as CVE-2024-7029 (CVSS score: 8.7), in AVTECH CCTV cameras. . ” continues the report.

Firmware 124

Firmware Malware Security Intelligence Authentication 124

Thales Cloud Protection & Licensing

APRIL 8, 2021

Safe-T Has Partnered with Thales to Bring a New Remote Access Security Solution to the Table. The global pandemic of 2020 has changed the world around us in drastic and likely permanent ways. Security Intelligence. Thu, 04/08/2021 - 07:38. Identity & Access Management. More About This Author >.

Authentication 123

Authentication Security Intelligence Risk 123

eSecurity Planet

DECEMBER 30, 2020

To ease these burdens, SECaaS and SOCaaS vendors have emerged as cloud-based security as a service that can collect, analyze, and correlate your information from diverse systems and applications — turning former headaches into actionable information security intelligence. Security as a Service (SECaaS) .

Penetration Testing 118

Penetration Testing Cybersecurity Antivirus Network Security 118

Security Boulevard

FEBRUARY 10, 2021

If you are a developer of web applications and looking for a guide to help you with security best practices, you are in luck. Back in October of 2020, Security Intelligence ran an article titled Web Application Security Best Practices: A Developer’s Guide.

Data breaches 69

Data breaches Security Intelligence 69

Daniel Miessler

NOVEMBER 6, 2020

The best example of the need for this is national level security intelligence, reconnaisance, and vulnerability assessment. Here’s my talk on this topic at DEFCON in 2020. Notifications to Humans When Automation Won’t Work (Prioritized Curation). This model is also relevant for large enterprises.

InfoSec 255

InfoSec Insurance Artificial Intelligence Cybersecurity 255

Cisco Security

FEBRUARY 16, 2021

The best kept secret in cloud workload security is that Cisco is number two in revenue market share according to IDC, just shy of $100 million in 2019 and almost certain to exceed $100 million in 2020 (please stay tuned). Organizations may subscribe to numerous threat intelligence feeds.

Firewall 125

Firewall Security Intelligence Marketing Cybersecurity 125

CyberSecurity Insiders

OCTOBER 13, 2021

Indeed, Infosecurity Magazine shared an April 2020 survey that arrived at the following results: Nearly half (45%) of respondents said that they did not consider reusing their passwords to be a serious problem. In an article for Security Intelligence , I said, “ the password doesn ’ t matter.

Passwords 141

Passwords Accountability Data breaches Authentication 141

SC Magazine

MAY 14, 2021

American Airlines flight 718, a Boeing 737 Max, is seen parked at its gate at Miami International Airport as passengers board for a flight to New York on December 29, 2020 in Miami, Florida. A campaign of remote access trojans is targeting the aerospace and travel industries. Photo by Joe Raedle/Getty Images).

Phishing 126

Phishing Scams Security Awareness Security Intelligence 126

Security Affairs

APRIL 1, 2021

“The most recent extortion attack — peaking at more than 800 Gbps and targeting a European gambling company — was the biggest and most complex we’ve seen since the widespread return of extortion attacks that kicked off in mid-August 2020. reads the analysis published by Akamai. ” Likely DDoS extortion attacks. .

DDOS 128

DDOS Security Intelligence Hacking Cybersecurity 128

Webroot

OCTOBER 1, 2021

2020 was a year of immense change. In our 2020 Webroot Threat Report , our security experts made a series of predictions related to the threat landscape. One thing is for certain – the world collectively witnessed the increase of digital interconnectivity. We began even more to rely on the internet as a conduit to the world.

Ransomware 126

Ransomware Backups Threat Reports Small Business 126

eSecurity Planet

APRIL 26, 2022

Company Sector Year Status Isovalent Cloud security 2020 Private Illumio Cloud security 2015 Private SignalFx Monitoring 2015 Acquired: Splunk CipherCloud Cloud security 2012 Acquired: Lookout Lookout Mobile security 2011 Private. a16z Investments. ForgePoint Investments. Insight Investments. LVP Investments.

Cybersecurity 130

Cybersecurity Technology Marketing Healthcare 130

Security Affairs

NOVEMBER 17, 2021

Over the past year, Microsoft Threat Intelligence Center (MSTIC) has observed an evolution of the tools, techniques, and procedures employed by Iranian nation-state actors. Learn more from this blog summarizing these trends, as presented at #CyberWarCon : [link] — Microsoft Security Intelligence (@MsftSecIntel) November 16, 2021.

VPN 134

VPN Accountability Social Engineering Media 134

The Last Watchdog

MAY 20, 2022

billion in 2020.”. MSSPs in 2022. What happens on the market? Well, as MSSP Alert notes, “In the Americas, the MSSP and PSSP market will reach $18.81 billion by 2024, up from $12.01 Some of the main drivers of this accelerated growth include: •Advanced threats and risk tolerance.

Marketing 247

Marketing Digital transformation Technology Cybersecurity 247

The Last Watchdog

MARCH 18, 2020

“It doesn’t seem like we’ve moved the needle on security at all,” says Tim Woods, vice president of technology alliances at FireMon, the leading provider of automated network security policy management systems. I had the chance to visit with Woods at RSAC 2020 in San Francisco recently.

Digital transformation 138

Digital transformation Software Technology Network Security 138

Security Affairs

OCTOBER 29, 2020

.” Microsoft Threat Intelligence Information Center (MSTIC) has uncovered activity by the threat actor PHOSPHOROUS, which has been masquerading as conference organizers and sending spoofed invitations by email to high-profile individuals. Get details here: [link] — Microsoft Security Intelligence (@MsftSecIntel) October 28, 2020.

Hacking 85

Hacking Security Intelligence Advertising Accountability 85