python – Computer Security Articles

The Stark Truth Behind the Resurgence of Russia’s Fin7

July 10, 2024 admin 7-zip, advanced ip scanner, aimp, anydesk, AutoDesk, bastion secure, bitwarden, Blackberry, combi security, esentire, FIN7, Malwarebytes, microsoft, Ne'er-Do-Well News, node.js, notepad++, pgadmin, prodaft, protectedpdfviewer, putty, python, ransomware, rest proxy, russia's war on ukraine, silent push, spearphishing, stark industries solutions, sublime text, typosquatting, Web Fraud 2.0, zach edwards

Credit to Author: BrianKrebs| Date: Wed, 10 Jul 2024 16:22:59 +0000

The Russia-based cybercrime group dubbed “Fin7,” known for phishing and malware attacks that have cost victim organizations an estimated $3 billion in losses since 2013, was declared dead last year by U.S. authorities. But experts say Fin7 has roared back to life in 2024 — setting up thousands of websites mimicking a range of media and technology companies — with the help of Stark Industries Solutions, a sprawling hosting provider is a persistent source of cyberattacks against enemies of Russia.

MalwareBytes Security

Malvertising via Dynamic Search Ads delivers malware bonanza

October 30, 2023 admin ads, dynamic search ads, google, malvertising, malware, pycharm, python, Threat Intelligence

Most, if not all malvertising incidents result from a threat actor either injecting code within an existing ad, or intentionally creating…

Kaspersky Security

Vulnerability in tarfile module | Kaspersky official blog

September 30, 2022 admin Business, enterprise, linux, python, SMB, vulnerabilities

Credit to Author: Enoch Root| Date: Fri, 30 Sep 2022 15:35:08 +0000

A 15-year-old vulnerability in the tarfile module poses a threat to many programs.

Microsoft Security

Using Python to unearth a goldmine of threat intelligence from leaked chat logs

June 1, 2022 admin conti, cybersecurity, Microsoft security intelligence, msticpy, python, Threat Intelligence

Credit to Author: Paul Oliveria| Date: Wed, 01 Jun 2022 18:00:00 +0000

Dealing with a great amount of data can be time consuming, thus using Python can be very powerful to help analysts sort information and extract the most relevant data for their investigation. The open-source tools library, MSTICpy, for example, is a Python tool dedicated to threat intelligence. It aims to help threat analysts acquire, enrich, analyze, and visualize data.

The post Using Python to unearth a goldmine of threat intelligence from leaked chat logs appeared first on Microsoft Security Blog.

Security Sophos

The Ransomware Threat Intelligence Center

March 17, 2022 admin active adversary, astrolocker, atom silo, avaddon, avos locker, black kingdom, blackmatter, conti, cring, darkside, dearcry, dharma, egregor, entropy, epsilon red, Featured, gandcrab, karma, lockbit, lockfile, maze, memento, Midas, nefilim, netwalker, python, ragnar locker, ragnarok, ransomware, rEvil, robbinhood, ryuk, SamSam, security operations, snatch, sophos threat report, WannaCry, wastedlocker

Credit to Author: Tilly Travers| Date: Thu, 17 Mar 2022 09:13:50 +0000

A collection of Sophos threat research articles and security operations reports related to new or prevalent ransomware groups from 2018 to the present. The content will be updated as new research is published

Microsoft Security

MSTICPy January 2022 hackathon highlights

February 25, 2022 admin cybersecurity, Microsoft security intelligence, microsoft threat intelligence center (mstic), python

Credit to Author: Microsoft 365 Defender Threat Intelligence Team| Date: Fri, 25 Feb 2022 17:00:00 +0000

In January 2022, MSTIC ran its inaugural hack month for the open-source Jupyter and Python Security Tools library, MSTICPy. This blog highlights some of the contributions.

The post MSTICPy January 2022 hackathon highlights appeared first on Microsoft Security Blog.

QuickHeal Security

Stay Alert – Malware Authors Deploy ELF as Windows Loaders to Exploit WSL feature

February 2, 2022 admin cybersecurity, ELF, linux, malware, microsoft, python, Uncategorized, windows, windows10, wsl

Credit to Author: Rutuja Mane| Date: Tue, 02 Nov 2021 11:01:48 +0000

What is WSL? The Windows Subsystem for Linux (WSL) is a resource inside the Windows operating system that…

The post Stay Alert – Malware Authors Deploy ELF as Windows Loaders to Exploit WSL feature appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.

MalwareBytes Security

New critical vulnerability discovered in open-source office suites

February 6, 2019 admin CVE-2018-16858, exploit, Exploits, libreoffice, openoffice, python, RCE, Threat analysis

Credit to Author: Jérôme Segura| Date: Wed, 06 Feb 2019 17:16:50 +0000

A security researcher recently published a proof of concept exploit for open-source office software LibreOffice and OpenOffice. Will this new vulnerability be used in the wild?

Categories:

Tags: CVE-2018-16858 exploit libreoffice openoffice python rce

← Previous