Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

Going Rogue: APT49 Using Rogue RDP | Threat SnapShot

Nov 6, 2024 By SnapAttack In SnapAttack
In 2022, Microsoft began blocking macros originating from the internet in Office, pushing both pentesters and threat actors to explore new methods for initial access. Fast forward to October 2024, and APT29 is leveraging one of those methods—Rogue RDP—discovered as a workaround back in 2022. In this video, we dive into a recent spearphishing campaign uncovered by the Ukrainian CERT, where attackers used Rogue RDP to gain initial access to targets. This video will provide you practical detection opportunities that can be used to hunt for this activity in your environment.
View Video
memcyco

How Ad Fraud Detection is Saving Money for Customers and Online Retailers

Nov 6, 2024 By Eran Tsur In Memcyco
If you’ve ever run an online ad campaign, be it through an advertising agency or in-house, there’s a very high chance that you, too, have fallen victim to undetected ad fraud. It’s not pleasant to hear, but your ad dollars often find their way into the pockets of cyber crooks. The costs of ad fraud are astronomical and continue to grow year after year. In Q1 of 2024, ad networks experienced an 18% click fraud rate across desktop web (26%), mobile web (15%), and mobile in-app (10%).
Read Post
veracode

Revolutionizing Risk Management in Application Security

Nov 5, 2024 By Donna Namorato In Veracode
In our hyper-connected reality, software applications are the unsung heroes of business operations. But, let's face it, with great tech comes great vulnerability to cyber shakedowns and data leaks. This begs the question: “Is scanning enough to manage risk?” Organizations are playing a high-stakes game of keeping their apps secure to safeguard their secrets.
Read Post
knowbe4

BlackBasta Ransomware Gang Uses New Social Engineering Tactics To Target Corporate Networks

Nov 5, 2024 By Stu Sjouwerman In KnowBe4
ReliaQuest warns that the BlackBasta ransomware gang is using new social engineering tactics to obtain initial access within corporate networks. The threat actor begins by sending mass email spam campaigns targeting employees, then adding people who fall for the emails to Microsoft Teams chats with external users. These external users pose as IT support or help desk staff, and send employees Microsoft Teams messages containing malicious QR codes.
Read Post
knowbe4

Attackers Abuse Eventbrite to Send Phishing Emails

Nov 5, 2024 By Stu Sjouwerman In KnowBe4
Attackers are abusing Eventbrite’s scheduling platform to send phishing emails, according to researchers at Perception Point. These attacks increased by 900% between July and October 2024. “Perception Point researchers observed phishing emails delivered via ‘noreply@events.eventbritecom,’” the researchers write.
Read Post
teleport

Why Secure Infrastructure Access Must Evolve: Insights from Teleport's 2024 Survey

Nov 5, 2024 By Jack Pitts In Teleport
89% of organizations suffered at least one security incident in the past three years, according to The 2024 State of Secure Infrastructure Access, a new survey of 250 security and engineering leaders. The rise of cloud computing, the surge of identity-based attacks, and increasing regulatory compliance concerns have forced companies to rethink how they handle security, productivity, and compliance.
Read Post
keeper

What To Do if You Opened a Phishing PDF

Nov 5, 2024 By Ashley D'Andrea In Keeper
If you think you’ve accidentally opened a phishing PDF, it’s important to immediately disconnect your device from the internet, back up your files, run a virus scan on your device and change your passwords. Typically, you can spot a phishing attempt if an email contains urgent and threatening language, too-good-to-be-true offers, spelling and grammatical errors or requests for private information.
Read Post
keeper

Can Viruses Come From a PDF?

Nov 5, 2024 By Ashley D'Andrea In Keeper
Yes, viruses can come from a PDF by hiding in malicious code. A virus is a type of malware, which is malicious software intended to infect your device and steal private data. A virus can infect your device only if you interact with it, which could happen by opening a PDF containing a virus. Since PDFs are so widely used, hackers can hide viruses within innocent-looking files to jeopardize your privacy.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.