Malware

How Hive becomes one of the most dangerous ransomware group

Aug 25, 2022 By Jose Miguel Esparza In Outpost 24

The Hive Gang is a Ransomware as a Service (RaaS) providers first identified in June 2021. Although relatively new, their aggressive tactics and ever evolving malware variants have made them one of the most successful RaaS groups of its kind. Find out how the group has risen through the ranks with their advanced ransomware kit, API based portal and negotiation services.

Read Post

Outpost 24

Read more about How Hive becomes one of the most dangerous ransomware group

The LockBit Ransomware Gang to Adopt More Aggressive Strategy Involving Triple Extortion

Aug 25, 2022 By Application Security Weekly In ImmuniWeb

Read also: Greece’s natural gas supplier DESFA hit with ransomware, an advanced BEC campaign targets high-ranking executives, and more.

Read Post

ImmuniWeb

Read more about The LockBit Ransomware Gang to Adopt More Aggressive Strategy Involving Triple Extortion

Rubrik and GraphQL - Episode 5 - Interfaces and Inline Fragments

Aug 25, 2022 By Rubrik In Rubrik

During Episode 2 we gave a very brief introduction to how we form queries in GraphQL to retrieve relevant data from the Rubrik platform. This episode will dive a bit deeper into forming queries that utilize inline fragments to gather data from types that implement other types using interfaces. If you are hunting through the documentation and you think that certain information is missing, this video might be the solution to all your problems!

View Video

Rubrik

Read more about Rubrik and GraphQL - Episode 5 - Interfaces and Inline Fragments

The Anatomy of Wiper Malware, Part 2: Third-Party Drivers

Aug 24, 2022 By Ioan Iacob - Iulian Madalin Ionita In CrowdStrike

In Part 1 of this four-part blog series examining wiper malware, we introduced the topic of wipers, reviewed their recent history and presented common adversary techniques that leverage wipers to destroy system data. In Part 2, CrowdStrike’s Endpoint Protection Content Research Team discusses how threat actors have used legitimate third-party drivers to bypass the visibility and detection capabilities of security mechanisms and solutions.

Read Post

CrowdStrike

Read more about The Anatomy of Wiper Malware, Part 2: Third-Party Drivers

When prevention isn't better than cure

Aug 23, 2022 By Rubrik In Rubrik

Learn to protect data from ransomware Explore real-life cybercrime examples Dive into the future of data security Learn to protect data from ransomware Register Now About half of CISOs say that their organisation is unprepared to cope with a coordinated attack. So they’re investing heavily to manage the risk. Deloitte reported that firms spend over 10% of their annual IT budget on cybersecurity. That works out at about $2-5 million per year for a typical enterprise.

Read Post

Rubrik

Read more about When prevention isn't better than cure

Rubrik and GraphQL - Episode 4 - Powershell

Aug 22, 2022 By Rubrik In Rubrik

Powershell is by far the most widely utilized SDK that Rubrik provides. While an SDK is currently under development to cover off everything Rubrik Security Cloud and GraphQL, this episode will show you how to make raw GraphQL API calls into the Rubrik platform using the infamous scripting tool. You will see how to form various queries and mutations within Powershell, and how to parse the returned responses - performing real-world automation scenarios with Powershell and Rubrik.

View Video

Rubrik

Read more about Rubrik and GraphQL - Episode 4 - Powershell

Introducing the Ransomware Content Browser

Aug 22, 2022 By Johan Bjerke In Splunk

Splunk SURGe recently released a whitepaper, blog and video that outline the encryption speeds of 10 different ransomware families. The outcome of this research was that it is unlikely that a defender will be able to do anything once the encryption has started. Ransomware today is also mostly “human-operated” where many systems are sought out and compromised before any encryption activities occur and, once they do, the encryption is just too fast to meaningfully affect the damage done.

Read Post

Splunk

Read more about Introducing the Ransomware Content Browser

Rubrik and GraphQL - Episode 3 - GraphQL Mutations

Aug 21, 2022 By Rubrik In Rubrik

Mutations within GraphQL are simply queries that modify or change data within the target platform. In this episode, we will cover some of the various mutations available within the Rubrik GraphQL schema, and show you how they can be used to insert, update, or delete data.

View Video

Rubrik

Read more about Rubrik and GraphQL - Episode 3 - GraphQL Mutations

Rubrik and GraphQL - Episode 2 - GraphQL Queries

Aug 20, 2022 By Rubrik In Rubrik

At the core of GraphQL lies the query. Queries allow us to fetch exactly the data we need from the Rubrik platform. This episode will dive into how we form basic queries to retrieve Rubrik objects for usage with automation. We’ll talk about how to form a query, create fragments, and pass data into our queries using variables.

View Video

Rubrik

Read more about Rubrik and GraphQL - Episode 2 - GraphQL Queries

Cross Account Replication of AWS RDS with Rubrik Security Cloud

Aug 19, 2022 By Rubrik In Rubrik

The Relational Database Service (RDS) service offered by AWS is one of the most popular databases today. A lot of critical, confidential data resides inside of RDS. Hence it becomes imperative to protect this data from various threats and ensure that the data is secure. Our approach to protecting the data inside RDS is based on two aspects: Rubrik already supports a modern approach to safeguarding RDS data from an operational perspective and also maintains a clean, secure copy in a different region.

Read Post