Malware

Nation-State Threat Actors Rely on Social Engineering First

Nov 12, 2024 By Stu Sjouwerman In KnowBe4

A new report from ESET has found that most nation-state threat actors rely on spear phishing as a primary initial access technique. In the second and third quarters of 2024, state-sponsored APTs from China, Russia, Iran, and North Korea used social engineering attacks to compromise their targets. Iranian threat actors continued conducting cyber espionage against countries across the Middle East, Europe, and the US. They also expanded their targeting to hit financial companies in Africa.

Read Post

KnowBe4

Read more about Nation-State Threat Actors Rely on Social Engineering First

The 3-2-1-1 Strategy: Protecting Your Backups Against Ransomware with NAKIVO

Nov 12, 2024 By NAKIVO In NAKIVO

Following the 3-2-1-1 backup rule can ensure your Microsoft 365 data is protected and readily recoverable in any scenario, whether accidental data deletion or even ransomware encryption. Watch this short video to see how you can easily create multiple backup copies of Microsoft 365 data to comply with the 3-2-1-1 backup rule using NAKIVO Backup & Replication.

View Video

NAKIVO

Read more about The 3-2-1-1 Strategy: Protecting Your Backups Against Ransomware with NAKIVO

Enabling Backup Encryption with NAKIVO: A Comprehensive Guide

Nov 11, 2024 By NAKIVO Team In NAKIVO

Encryption is widely used for security purposes because it prevents unauthorized third parties from accessing and disseminating private data. Backups are no exception and are often a target of data breaches. As part of a data protection strategy, you can implement encryption as an additional layer of security for your backups.

Read Post

NAKIVO

Read more about Enabling Backup Encryption with NAKIVO: A Comprehensive Guide

Asking Data Security Experts the Hard Questions

Nov 11, 2024 By Rubrik In Rubrik

We sat down with some of the top experts in data security to answer some of your burning questions, and they delivered!

View Video

Rubrik

Read more about Asking Data Security Experts the Hard Questions

Is Your Social Media Growth Safe? Navigating Security Risks of Buying Followers and Likes

Nov 8, 2024 By SecuritySenses In SecuritySenses

In today's hyper-connected world, social media platforms like Instagram and TikTok have become essential tools for personal branding, business marketing, and even social influence. With the rising importance of social media metrics such as follower counts and likes, there's been a surge in individuals and brands purchasing followers and likes to boost their online image. However, this seemingly quick way to boost social media presence comes with notable risks. When buying followers, ensuring social media security is crucial, as these practices can open doors to security vulnerabilities, account bans, and even reputational damage.

Read Post

SecuritySenses

Read more about Is Your Social Media Growth Safe? Navigating Security Risks of Buying Followers and Likes

Global ybercrime rackdown Takes Down Over 22K Malicious IPs And Servers

Nov 7, 2024 By Key Dutch In ImmuniWeb

Read also: German police bust Dstat.cc DDoS platform, the alleged Snowflake hacker arrested in Canada, and more.

Read Post

ImmuniWeb

Read more about Global ybercrime rackdown Takes Down Over 22K Malicious IPs And Servers

Analyzing Play and LockBit: The Top Ransomware Threats Facing Retailers

Nov 7, 2024 By Trustwave In Trustwave

This blog is the latest in a series that delves into the deep research conducted daily by the Trustwave SpiderLabs team on major threat actor groups currently operating globally. Retailer databases are chock-full of information that makes them highly attractive targets for ransomware gangs, as highlighted by Trustwave SpiderLabs in its recent 2024 Trustwave Risk Radar Report: Retail Sector.

Read Post

Trustwave

Read more about Analyzing Play and LockBit: The Top Ransomware Threats Facing Retailers

Going Rogue: APT49 Using Rogue RDP | Threat SnapShot

Nov 6, 2024 By SnapAttack In SnapAttack

In 2022, Microsoft began blocking macros originating from the internet in Office, pushing both pentesters and threat actors to explore new methods for initial access. Fast forward to October 2024, and APT29 is leveraging one of those methods—Rogue RDP—discovered as a workaround back in 2022. In this video, we dive into a recent spearphishing campaign uncovered by the Ukrainian CERT, where attackers used Rogue RDP to gain initial access to targets. This video will provide you practical detection opportunities that can be used to hunt for this activity in your environment.

View Video

SnapAttack

Read more about Going Rogue: APT49 Using Rogue RDP | Threat SnapShot

CTI Roundup: Scattered Spider and RansomHub Partner, Infostealer Malware Bypasses Chrome Patches, Evasive Panda Back in the News

Nov 6, 2024 By Tanium In Tanium

Scattered Spider partners with RansomHub, infostealers evade Chrome defenses, and Evasive Panda uses CloudScout to steal user cookies.

Read Post

Tanium

Read more about CTI Roundup: Scattered Spider and RansomHub Partner, Infostealer Malware Bypasses Chrome Patches, Evasive Panda Back in the News

Can Viruses Come From a PDF?

Nov 5, 2024 By Ashley D'Andrea In Keeper

Yes, viruses can come from a PDF by hiding in malicious code. A virus is a type of malware, which is malicious software intended to infect your device and steal private data. A virus can infect your device only if you interact with it, which could happen by opening a PDF containing a virus. Since PDFs are so widely used, hackers can hide viruses within innocent-looking files to jeopardize your privacy.

Read Post