Targeted Attacks – Page 2 – Computer Security Articles

Detecting credential theft through memory access modelling with Microsoft Defender ATP

May 24, 2019 admin credential dumping, credential theft, cybersecurity, Endpoint security, fileless, in-memory attacks, lateral movement, living-off-the-land, LSASS, lsass.exe, memory access modelling, Microsoft Defender ATP, Reflective DLL loading, Targeted Attacks, Windows Security

Credit to Author: Eric Avena| Date: Thu, 09 May 2019 17:29:45 +0000

Microsoft Defender ATP instruments memory-related function calls such as VirtualAlloc and VirtualProtect to catch in-memory attack techniques like reflective DLL loading. The same signals can also be used to generically detect malicious credential dumping activities performed by a wide range of different individual tools.

The post Detecting credential theft through memory access modelling with Microsoft Defender ATP appeared first on Microsoft Security .

Kaspersky Security

Transatlantic Cable podcast, episode 69

December 20, 2018 admin APT, GReAT, news, podcast, predictions, Targeted Attacks, Threats

Credit to Author: Jeffrey Esposito| Date: Tue, 18 Dec 2018 13:29:06 +0000

In this episode, Jeff sits down with Vicente Diaz of Kaspersky Lab’s GReAT to discuss a review of APTs in 2018 and what 2019 may hold.

Kaspersky Security

DarkVishnya attacks from inside

December 6, 2018 admin Bash Bunny, Business, DarkVishnya, enterprise, Targeted Attacks, Threats

Credit to Author: Nikolay Pankov| Date: Thu, 06 Dec 2018 19:58:11 +0000

Malefactors do not need to infect your computers with malware if they can just plug their devices right into your network.

Security Sophos

How a SamSam-like attack happens, and what you can do about it

November 29, 2018 admin ransomware, SamSam, SophosLabs Uncut, Targeted Attacks

Credit to Author: Andrew Brandt| Date: Thu, 29 Nov 2018 23:27:29 +0000

We summarize how the attackers perform a targeted ransomware attack<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/4tRhQF3Wb0k” height=”1″ width=”1″ alt=””/>

Microsoft Security

Attack uses malicious InPage document and outdated VLC media player to give attackers backdoor access to targets

November 8, 2018 admin CVE-2017-12842, cybersecurity, InPage, Office 365 ATP, Targeted Attacks, Windows Defender ATP, Windows Defender AV

Credit to Author: Windows Defender ATP| Date: Thu, 08 Nov 2018 18:08:13 +0000

Our analysis of a targeted attack that used a language-specific word processor shows why its important to understand and protect against small-scale and localized attacks as well as broad-scale malware campaigns. The attack exploited a vulnerability in InPage, a word processor software for specific languages like Urdu, Persian, Pashto, and Arabic. More than 75% of

The post Attack uses malicious InPage document and outdated VLC media player to give attackers backdoor access to targets appeared first on Microsoft Secure.

Security TrendMicro

Cybercriminals Changing Tactics as Seen in First Half Report

August 28, 2018 admin 2018 security roundup report, Cryptojacking, cryptomining, cybercriminals, ransomware, Security, Targeted Attacks, Underground Economy

Credit to Author: Jon Clay (Global Threat Communications)| Date: Tue, 28 Aug 2018 12:05:30 +0000

Today, Trend Micro released its first half 2018 security roundup report in which we want to share the threat intelligence we discovered through the Trend Micro™ Smart Protection Network™ that allows us to identify the threats that have targeted our customer base. Below are some thoughts I’d like to share with you about these trends…

The post Cybercriminals Changing Tactics as Seen in First Half Report appeared first on .

Kaspersky Security

Financial fraud on an industrial scale

August 2, 2018 admin Business, industrial enterprise, manufacturing, phishing, RMS, Security, Targeted Attacks, teamviewer, Threats

Credit to Author: Leonid Grustniy| Date: Thu, 02 Aug 2018 14:47:18 +0000

More than 400 manufacturing companies became phishing targets.

Kaspersky Security

EPP plus EDR: The future of endpoint cybersecurity

May 16, 2018 admin APT, Business, EDR, EPP, KPSN, Products, Targeted Attacks

Credit to Author: Yana Shevchenko| Date: Wed, 16 May 2018 16:17:07 +0000

A traditional approach to cybersecurity is no longer good enough. Dealing with advanced threats requires advanced tools such as endpoint detection and response.