Hot Topics

RDP

CACTUS Qlik Ransomware: Vulnerabilities Exploited

| | Analytics Software, Arctic Wolf, BI Systems, BITS, CACTUS Qlik Ransomware, CVEs, Cyberattack Campaign, Cybersecurity, Cybersecurity News, Data Visualization, Double Extortion, Exploits, HTTP Tunneling, Incident Response, ManageEngine UMES, patching, path traversal, powershell, Qlik Sense, ransomware tactics, Rclone, RDP, Remote Code Execution, Security Vulnerabilities, Sophos Endpoint Security, threat actors, VPN Appliance Flaws, WizTree
A cyberattack campaign dubbed the CACTUS Qlik Ransomware has become prominent in ransomware attacks on BI systems. Researchers have warned of threat actors exploiting three Qlik security vulnerabilities to target different organizations ...
TuxCare
vulnerability ConnectWise

2021 Marred by Aggressive APTs; RDP Attacks up 897%

| | APTs, Coronavirus malware, ESET, RDP
While much of the world tried to regain some semblance of normalcy in 2021 after the onset of the COVID-19 pandemic the year before, cyberattackers were hard at work ushering in the ...
Security Boulevard

World’s first 100G Zeek sensor

| | 100G, Announcements, AP 5000, Command And Control, Fleet Manager, intrusion detection, Lawrence Berkeley Labs, network detection response, Network Security, network security monitoring, network traffic analysis, network visibility, open source, Open Source Community, Product, RDP, SIEM, Suricata, Zeek
By Sarah Banks, Senior Director of Product Management, Corelight As we finished rolling out Corelight’s v21 software release, which saw the delivery of the world’s first 100G, 1U Zeek sensor, I was ...
Bright Ideas Blog
Introducing RDP Inferences

Introducing RDP Inferences

| | Alert AA21-131A, Announcements, APT39, APT40, Corelight Labs, Crowbar, DarkSide ransomware, Duo, Emotet, encrypted traffic, encrypted traffic collection, JA3, Matrix ransomware, network detection response, Network Security, network security monitoring, network traffic analysis, network visibility, Palo Alto Networks, RDP, RDPBCGR, Richard Bejtlich, rsa, RSAConference, Vern Paxson, Zeek, Zscaler
By Anthony Kasza, Technical Director, Corelight Corelight recently released a new package, focused on RDP inferences, as part of our Encrypted Traffic Collection. This package runs on Corelight Sensors and provides network ...
Bright Ideas Blog

Introducing the C2 Collection and RDP inferences

| | Announcements, Command And Control, encrypted traffic collection, encryption, Malware, MITRE ATT&CK, network detection response, Network Security, network security monitoring, network traffic analysis, network visibility, Product, RDP, rsa, RSAConference, Zeek
By Vince Stoffer, Senior Director, Product Management, Corelight We’re excited to announce that the Command and Control (C2) Collection is now available with today’s launch of version 21 of the Corelight software ...
Bright Ideas Blog

C2 detections, RDP insights and NDR at 100G

| | Announcements, Command And Control, MITRE ATT&CK, network detection response, Network Security, network security monitoring, network traffic analysis, network visibility, Product, RDP, rsa, RSAConference, SANS, Webinar, Zeek
By John Gamble, Director of Product Marketing, Corelight Today I am excited to announce Corelight’s v21 release, which delivers dozens of powerful C2 detections, extends analyst visibility around RDP connections, and helps ...
Bright Ideas Blog
Tines Orca Security Cisco cybersecurity critical defense end-of-life-system cyberinsurers hygiene posture SASE How the Cybersecurity Industry Changed in 2020

How the Cybersecurity Industry Changed in 2020

| | Cybersecurity, RDP, Remote Desktop Protocol, Richard Stiennon, Security Yearbook 2020
As a result of the global pandemic, rapid digital transformation has shifted the cybersecurity landscape into uncharted territory. The massive influx of data to the cloud as a result of the shift ...
Security Boulevard
Log4j RDP attack

RDP Attacks on the Rise During COVID-19 Pandemic

| | Cybersecurity Analysis, RDP, remote work, Security for Remote Workers, Security Vulnerabilities, server access
Enterprises forced to pivot to remote work environments in the wake of the COVID-19 pandemic may have exposed themselves to the potential for remote desktop protocol (RDP) attacks. When global lockdowns were ...
Security Boulevard
🩸ЭЛИТНЫЕ ХАКЕРЫ REVIL/SODINOKIBI: $100 МИЛЛИОНОВ НА ШИФРОВАЛЬЩИКЕ? | RUSSIAN OSINT

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

| | Dagens Nyheter, Data breaches, Gunnebo Group breach, Hold Security, Intel 471, Linus Larsson, Mark Arena, Ransomware, Rasmus Jansson, RDP, rEvil, Sodinokibi, Stefan Syrén
In March 2020, KrebsOnSecurity alerted Swedish security giant Gunnebo Group that hackers had broken into its network and sold the access to a criminal group which specializes in deploying ransomware. In August, ...
Krebs on Security
RDP Used by Iranian Actors in International Dharma Ransomware Attacks

RDP Used by Iranian Actors in International Dharma Ransomware Attacks

| | Dharma, IT Security and Data Protection, Latest Security News, Ransomware, RDP
Iranian actors leveraged the Remote Desktop Protocol (RDP) as part of an international campaign to target companies with Dharma ransomware. Group-IB uncovered the campaign while conducting an incident response engagement for a ...
The State of Security
Load more