Advanced persistent threat
What is Steganography, and how can we Avoid it?
Nik Hewitt | | Advanced persistent threat, Application Security, cloud WAF, Cyber Security, Digest, Malware, social engineering, Web Application Firewall
What is steganography? Steganography is, broadly, a type of covert communication involving the use of any medium to hide messages. Steganography is a relatively old technique of hiding ‘secret’ data in plain ...

How an MSSP successfully fought off a major cyber attack
Chris Gerritz | | Advanced persistent threat, Cobalt Strike, cyber attacks, EDR, endpoint detection and response, Incident Response, incident stories, managed detection and response, mdr, Ransomware
Here at Infocyte, we are helping our customers and partners respond to major attacks on almost a weekly basis. When I say attack, I don’t mean an antivirus notification about a bad ...

Malicious Life Podcast: Operation GhostShell – An Iranian Espionage Campaign
Malicious Life Podcast | | Advanced persistent threat, Aerospace, APT, Cloud Security, dropbox, Espionage, Ghostshell, government, Infosec, Iran, Malicious Life, MalKamak, national security, Operation GhostShell, Podcast, PodcastsCat, Remote Code Execution, remote-access Trojan, security, ShellClient RAT, telecommunications, telecoms
In July 2021, Nocturnus - the Cybereason Threat Research and Intelligence team - was called to investigate an espionage campaign targeting Aerospace and Telecommunications companies globally. Their investigation resulted in the discovery ...

Operation GhostShell: Novel RAT Targets Global Aerospace and Telecoms Firms
Cybereason Nocturnus | | Advanced persistent threat, Aerospace, Agrius APT, APT, Critical Infrastructure, cyberattack, Espionage, Europe, Iran, MalKamak, Malop, Malware, Nation-state Attack, national security, Nocturnus, Operation GhostShell, remote-access Trojan, research, ResearchCat, Russia, ShellClient RAT, telecommunications, telecoms, threat actors, Threat Intelligence, Turla, United States
In July 2021, the Cybereason Nocturnus and Incident Response Teams responded to Operation GhostShell, a highly-targeted cyber espionage campaign targeting the Aerospace and Telecommunications industries mainly in the Middle East, with additional ...

New Cybereason Government Subsidiary Empowers U.S. Agencies to Detect Malicious Operations Faster
Cybereason Security Team | | Advanced persistent threat, APT, Cybereason Anti-Ransomware Solution, Cybereason Defense Platform, Cybereason Government Inc., Cybereason XDR Platform, EDR, Endpoint Controls, endpoint detection and response, Endpoint Protection Platform, EPP, Federal Government, government, Nation-state Attack, national security, Next Generation Antivirus, ngav, Public Sector, Unified Endpoint Security
Cybereason is excited to announce the creation of a U.S. Government subsidiary, Cybereason Government Inc., dedicated to prevention, detection and response to malicious operations targeting U.S. Government agencies. Cybereason is committed to ...

Malicious Life Podcast: Inside the MITRE ATT&CK Framework
Malicious Life Podcast | | Advanced persistent threat, APT, ATT&CK, EDR, Endpoint Controls, endpoint detection and response, Endpoint Protection Platform, EPP, Infosec, Malicious Life, MITRE ATT&CK Framework, mitreattack, Network Security, Podcast, PodcastsCat, security, Unified Endpoint Security
In some ways, cybersecurity is like art, but that’s not a good thing… The MITRE ATT&CK framework aims to make sense of the collective knowledge of the security community and share that ...

Govware Conference: Cybereason CEO Lior Div to Deliver Keynote
Cybereason Security Team | | Advanced persistent threat, APT, china, cyberattack, DeadRinger, Espionage, Govware conference, Lior Div, Sam Curry, telecommunications, telecoms
Cybereason is pleased to share that our CEO and co-founder Lior Div will be a keynote speaker at the Govware Conference in Singapore on Wednesday, October 6, 9:30 am, SST. His talk ...

Malicious Life Podcast: Should the U.S. Ban Chinese and Russian Technology?
Malicious Life Podcast | | Advanced persistent threat, Application Security, APT, china, Cybersecurity, FaceApp, Infosec, Internet of things, iot, Malicious Life, personally identifiable information, pii, Podcast, PodcastsCat, Privacy, Russia, security, security awareness training, Tik Tok
Every year, seemingly, there’s a new story of some software like 'Tik Tok' or 'FaceApp' from a hostile country that may or may not be a security threat to us in the ...

Commenting on the SANS Threat Intelligence Summit 2021 Presentations – An Analysis and Practical Recommendations
Dancho Danchev | | Advanced persistent threat, cybercrime, Information Security, security, Threat Intelligence
Hi everyone,I recently came across to the entire portfolio of SANS Threat Intelligence Summit presentations which are currently online at YouTube and I've decided to take the time and effort to go ...

What is Driving the Surge of Ransomware Attacks?
Cybereason Security Team | | Advanced persistent threat, Anti-Ransomware, antivirus, APT, Colonial Pipeline, cryptocurrency, cybercrime, Cybereason Anti-Ransomware Solution, Darkside, EDR, Endpoint Controls, endpoint detection and response, Endpoint Protection Platform, EPP, Indicators of Behavior, Infosec, iob, Kaseya Attacks, Next Generation Antivirus, RansomOps, Ransomware, rEvil, security, StopRansomware.gov, Unified Endpoint Security
Some major ransomware attacks have dominated the headlines recently. Back in the beginning of May, for instance, the Colonial Pipeline Company suspended its daily transportation of 100 million gallons of fuel between ...