APT – Computer Security Articles

Dangerous holy water

March 31, 2020 admin 0 Comments APT, Business, enterprise, news, SMB, Targeted attack, Threats, watering hole

Credit to Author: Nikolay Pankov| Date: Tue, 31 Mar 2020 13:23:27 +0000

Attackers are infecting users’ computers with a backdoor posing as an Adobe Flash Player update.

APT36 jumps on the coronavirus bandwagon, delivers Crimson RAT

March 17, 2020 admin APT, apt36, coronavirus, coronavirus malware, covid-19, credential stealer, crimson rat, exploit, Exploits, info-stealer, macro, malicious macro, malware, nation-state attack, Rat, remote administration tool, Social engineering, spear phishing, spear phishing attack, Threat analysis, transparent tribe

Credit to Author: Threat Intelligence Team| Date: Mon, 16 Mar 2020 15:00:00 +0000

We look at a spear phishing attack from APT36, an Advanced Persistent Threat group posing as the government of India and offering guidance on coronavirus. Instead, users are infected with a Crimson RAT that steals data.

Categories:

Threat analysis

Tags: APT APT36 coronavirus coronavirus malware covid-19 credential stealer crimson rat exploit exploits info-stealer macro malicious macro malware nation-state attack rat remote administration tool Social Engineering spear phishing spear phishing attack transparent tribe

MalwareBytes Security

Securing the MSP: why they’re their own worst enemy

February 14, 2020 admin Advanced Persistent Threat, Advanced persistent threats, APT, breach, credential management, credentials, data breach, hacking, managed service provider, MSP, msps, Opinion, phishing

Credit to Author: William Tsing| Date: Thu, 30 Jan 2020 16:00:00 +0000

Behind each cyberattack on the MSP is typically a system left unpatched, asset management undone, security officer not hired, or board who sees investment in security as a cost center rather than a long-term investment.

Categories:

Opinion

Tags: advanced persistent threat advanced persistent threats APT breach credential management credentials data breach hacking managed service provider MSP MSPs phishing

MalwareBytes Security

Securing the MSP: their own worst enemy

January 30, 2020 admin Advanced Persistent Threat, Advanced persistent threats, APT, breach, credential management, credentials, data breach, hacking, managed service provider, MSP, msps, Opinion, phishing

Credit to Author: William Tsing| Date: Thu, 30 Jan 2020 16:00:00 +0000

Categories:

Opinion

Tags: advanced persistent threat advanced persistent threats APT breach credential management credentials data breach hacking managed service provider MSP MSPs phishing

(Read more…)

The post Securing the MSP: their own worst enemy appeared first on Malwarebytes Labs.

Kaspersky Security

Web-threat protection and targeted attacks

January 22, 2020 admin APT, Business, enterprise, phishing, SMB, web

Credit to Author: Oleg Gorobets| Date: Wed, 22 Jan 2020 21:18:27 +0000

Web threats are actively used in targeted attacks, so their neutralization should be an integral part of APT defense strategy.

Security Sophos

Applying Threat Intelligence to Iranian Cyberattack Risk

January 15, 2020 admin applied threat intelligence, APT, blue team, Iran, managed threat response, mtr, outcome-focused security, security program strategy, sophos managed threat response (mtr), SophosLabs, Threat Intelligence

Credit to Author: J.J. Thompson| Date: Wed, 15 Jan 2020 13:01:37 +0000

As geopolitical interest increases, discussions of threat intelligence increase which increases pressure on security operations teams to provide answers to customers and to senior leadership.<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/pQqkg_WT2eU” height=”1″ width=”1″ alt=””/>

Security Sophos

High-profile events are opportunities to determine security readiness

January 15, 2020 admin APT, Iran, LOL, Patch Tuesday, patching, phishing, shamoon, SophosLabs

Credit to Author: Chester Wisniewski| Date: Wed, 15 Jan 2020 10:00:38 +0000

While the likelihood you might be targeted by a nation-state is low, preparing for such a circumstance might still be a useful strategy<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/mlgSNlflJNI” height=”1″ width=”1″ alt=””/>

MalwareBytes Security

A week in security (October 28 – November 3)

November 4, 2019 admin a week in security, adobe creative cloud, Advanced persistent threats, american cancer society, Android, APT, blogger, cybersecurity challenges, data breach, disaster donation scam, emoji app, esports, Fancy Bear, fraud, FTC, gafgyt, internet, journalists, MaaS, Magecart, Malware-as-a-Service, messagetap, nuclear power corp of india, raccoon, retina-x, sextortion, SMB, stalkerware, US Federal Trade Commission, wordpress

Credit to Author: Malwarebytes Labs| Date: Mon, 04 Nov 2019 16:37:57 +0000

A roundup of the latest cybersecurity news for the week of October 28 – November 3, including cyberattacks against SMBs, the Internet’s 50th birthday, stalkerware, donation scams, and more.

Categories:

A week in security

Tags: Adobe Creative Cloud advanced persistent threats American Cancer Society Android APT blogger cybersecurity challenges data breach disaster donation scam emoji app esports Fancy Bear fraud FTC Gafgyt internet journalists MaaS Magecart Malware-as-a-Service MessageTap Nuclear Power Corp of India Raccoon Retina-X sextortion SMB stalkerware US Federal Trade Commission wordpress

(Read more…)

The post A week in security (October 28 – November 3) appeared first on Malwarebytes Labs.

← Previous