%term

New RedTail Malware Exploited Via PHP Security Vulnerability

Jul 10, 2024 By Prashant Tilekar In Forescout

RedTail is a sophisticated malware designed for unauthorized cryptocurrency mining with a focus on Monero. It was first identified in January 2024, but it has been circulating since at least December 2023. Its latest iterations show improvements in evasion and persistence mechanisms, underscoring the significant expertise and resources driving its development.

Read Post

Forescout

Read more about New RedTail Malware Exploited Via PHP Security Vulnerability

The Importance of Security Culture: When Telecom Giants Resort to Malware

Jul 9, 2024 By Javvad Malik In KnowBe4

I recently read a story about a South Korean telecom company that pushed out malware to over 600,000 of its customers who were using torrents to share files, in a bid to limit their file-sharing capabilities. Users reported that their files went missing, random folders appeared, and in some cases, their PCs were disabled.

Read Post

KnowBe4

Read more about The Importance of Security Culture: When Telecom Giants Resort to Malware

How to Create a Ransomware Recovery Plan & Prevent Attacks

Jul 8, 2024 By David Safaii In Trilio

Ransomware isn’t just a threat—it’s a harsh reality facing IT professionals in many industries. And while Kubernetes and OpenShift are powerful platforms for modern infrastructure, they introduce unique complexities that cybercriminals can exploit. The fallout from a successful attack is well documented: significant financial loss, operational downtime, and potential damage to your organization’s reputation.

Read Post

Trilio

Read more about How to Create a Ransomware Recovery Plan & Prevent Attacks

Understanding an 0ktapus Phishing Campaign

Jul 8, 2024 By Fireblocks In Fireblocks

The recent surge in phishing attacks capable of bypassing multi-factor authentication (MFA) has raised significant concerns in the cybersecurity landscape. These attacks highlight the fact that even systems protected by MFA have vulnerabilities, making it imperative for organizations to stay vigilant and not rely on a single control as a silver bullet. One such campaign, known as 0ktapus, provides a crucial case study in understanding the methods and impacts of these phishing attacks.

Read Post

Fireblocks

Read more about Understanding an 0ktapus Phishing Campaign

UX Design and Research for AI-Driven Products with Rubrik User Researcher Tianmi Fang

Jul 8, 2024 By Rubrik In Rubrik

In this video, we delve into the design process of Rubrik Ruby, your generative AI-powered cyber recovery companion, and how it addresses real user problems for security and IT teams. We took a different approach by focusing on understanding user pain points and leveraging the power of AI to provide solutions. One of Ruby's key benefits is its ability to automate repetitive tasks, freeing up your time and energy. Ruby utilizes AI and automation to prioritize overwhelming information, ensuring that you get what you need when you need it.

View Video

Rubrik

Read more about UX Design and Research for AI-Driven Products with Rubrik User Researcher Tianmi Fang

State of Ransomware

Jul 8, 2024 By Fidelis Security In Fidelis Security

In this video we discuss the state of ransomware and the latest threat intelligence.

View Video

Fidelis Security

Read more about State of Ransomware

New "Paste and Run" Phishing Technique Makes CTRL-V A Cyber Attack Accomplice

Jul 5, 2024 By Stu Sjouwerman In KnowBe4

A new phishing campaign tries to trick email recipients into pasting and executing malicious commands on their system that installs DarkGate malware. Security researchers at Ahnlab have discovered a new phishing campaign that leverages a unique user interaction. Normally, phishing campaigns simply need users to open an HTML attachment.

Read Post

KnowBe4

Read more about New "Paste and Run" Phishing Technique Makes CTRL-V A Cyber Attack Accomplice

Volcano Demon Ransomware Group Uses Phone Calls for Direct Extortion

Jul 5, 2024 By Foresiet In Foresiet

A newly identified ransomware group, "Volcano Demon," has emerged, targeting executives directly with threatening phone calls instead of the typical data leak sites. Over the past two weeks, this group has carried out several attacks, deploying a unique ransomware variant known as “LukaLocker,” according to a report from Halcyon. LukaLocker Ransomware Attack Overview Volcano Demon’s ransomware, LukaLocker, encrypts files with a.nba extension.

Read Post

Foresiet

Read more about Volcano Demon Ransomware Group Uses Phone Calls for Direct Extortion

CLEARFAKE Update Tricks Victim into Executing Malicious PowerShell Code

Jul 5, 2024 By Kroll In Kroll

CLEARFAKE is the term used to describe the malicious in-browser JavaScript framework deployed on compromised webpages as part of drive-by compromise campaigns to deliver information stealers. It has the potential to impact all sectors. Although the CLEARFAKE fake browser update campaign (which was initially identified in Q2 2023) originally targeted Windows users, it expanded to macOS users in Q4 2023.

Read Post

Kroll

Read more about CLEARFAKE Update Tricks Victim into Executing Malicious PowerShell Code

Volcano Demon Ransomware Group Rings Its Victims To Extort Money

Jul 4, 2024 By Graham Cluley In Tripwire

Security researchers have warned that a new ransomware group has taken an unusual twist on the traditional method of extorting money from its corporate victims.

Read Post