Threat Intelligence

Monero Cryptominer Attack Exploits Exchange Server Flaw
It didn’t take threat actors long to jump on a vulnerability affecting Microsoft Exchange mail server software. While exploits involving an array of malware from ransomware to webshells are well-documented, Sophos researchers ...

U.S. Takes Aim at Russia’s Cyber Ops Ecosystem
The Biden administration is taking the Russian cyber operations ecosystem to task with sanctions pointed at both established Russian companies as well as Russian-controlled entities created by the FSB, GRU and SVR ...

U.S. Fingers Putin’s Cozy Bear for SolarWinds Attacks
To the surprise of precisely nobody, the NSA, FBI and CISA agreed that last year’s SolarWinds supply-chain attack was orchestrated by the Russian state ...

YT$AW: FBI Cleans Up Exchange Servers, NSA Tips Microsoft 4 More Bugs
Your tax dollars at work: The FBI and NSA have been helping fix the mess caused by Microsoft Exchange hacking ...

Son of Stuxnet? Iran Nuke Site Hacked ‘by Israel’ (Again)
Iran’s Nantaz nuclear centrifuge facility went dark yesterday. Sources say it was an Israeli cyberattack—another one. But something doesn’t add up ...

Facebook Sucks: Huge 500M-User Breach ‘Is Your Fault’
Last week’s revelation of a half-billion-user leak is still reverberating around the news cycle. It’s like car-crash TV ...

The Cybereason Difference: Introduction to the Malop
Welcome to the April edition of our series The Cybereason Difference (inaugural post here). Each post of this series explores a unique way that Cybereason empowers defenders ...

Black Kingdom Ransomware Jumps on the Exchange Express
When Microsoft announced that it discovered a state-sponsored threat group, Hafnium, was exploiting four separate zero-day vulnerabilities, the InfoSec community was already looking into their crystal ball to predict when other groups ...

Ubiquiti Accused of Lying to Help Stock Price
Ubiquiti said its January breach was the fault of a “third party.” But this week, an insider says Ubiquiti lied: “It was catastrophically worse.” ...

SolarWinds Hack: U.S. Govt Failure is Deeply Worrying
The U.S. government is doing a piss-poor job of protecting Americans from foreign hackers ...