Emerging Threats

Pronsis Loader: A JPHP-Driven Malware Diverging from D3F@ck Loader

Emerging Threats, Managed Security Services, Security Research, Threat Intelligence, Vulnerabilities /

Pronsis Loader: A JPHP-Driven Malware Diverging from D3F@ck Loader 2024-10-08 at 16:01 By Cris Tomboc and King Orande Trustwave’s Threat Intelligence team has discovered a new malware dubbed Pronsis Loader, with its earliest known variant dating back to November 2023. This article is an excerpt from SpiderLabs Blog View Original Source React to this headline:

React to this headline:

Loading spinner

Pronsis Loader: A JPHP-Driven Malware Diverging from D3F@ck Loader Read More »

What We Know So Far About Zero-Day CUPS Vulnerabilities: CVE-2024-47176, CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177

DFIR, Emerging Threats, Security Research, Threat Intelligence, Trustwave Rapid Response, Vulnerabilities /

What We Know So Far About Zero-Day CUPS Vulnerabilities: CVE-2024-47176, CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177 2024-09-30 at 22:01 By On September 26, 2024, security researcher Simone Margaritelli disclosed the details of four OpenPrinting Common UNIX Printing System (CUPS) vulnerabilities, that, when chained together, can allow malicious actors to launch remote code execution (RCE) attacks on vulnerable systems. This article is

React to this headline:

Loading spinner

What We Know So Far About Zero-Day CUPS Vulnerabilities: CVE-2024-47176, CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177 Read More »

HTML Smuggling: How Blob URLs are Abused to Deliver Phishing Content

data breach, email security, Emerging Threats, Security Research, Threat Intelligence, Vulnerabilities /

HTML Smuggling: How Blob URLs are Abused to Deliver Phishing Content 2024-09-24 at 16:01 By Mike Casayuran HTML smuggling techniques have been around for quite some time. A previous Trustwave SpiderLabs’ blog discussed its use in distributing malware by storing binaries in immutable blob data within JavaScript code that gets decoded on the client-side browser, eventually delivering

React to this headline:

Loading spinner

HTML Smuggling: How Blob URLs are Abused to Deliver Phishing Content Read More »

Why Do Criminals Love Phishing-as-a-Service Platforms?

data breach, email security, Emerging Threats, Managed Detection and Response, Managed Security Services, Threat Intelligence /

Why Do Criminals Love Phishing-as-a-Service Platforms? 2024-09-23 at 13:01 By Rodel Mendrez Phishing-as-a-Service (PaaS) platforms have become the go-to tool for cybercriminals, to launch sophisticated phishing campaigns targeting the general public and businesses, especially in the financial services sector. This article is an excerpt from SpiderLabs Blog View Original Source React to this headline:

React to this headline:

Loading spinner

Why Do Criminals Love Phishing-as-a-Service Platforms? Read More »

ALPHV BlackCat Ransomware: A Technical Deep Dive and Mitigation Strategies

email security, Emerging Threats, Managed Detection and Response, Security Research, Threat Intelligence, Vulnerabilities /

ALPHV BlackCat Ransomware: A Technical Deep Dive and Mitigation Strategies 2024-09-17 at 16:01 By ALPHV, also known as BlackCat or Noberus, is a sophisticated ransomware group targeting critical infrastructure and various organizations, including being the most active group used to attack the financial services sector. This article is an excerpt from Trustwave Blog View Original

React to this headline:

Loading spinner

ALPHV BlackCat Ransomware: A Technical Deep Dive and Mitigation Strategies Read More »

Spam With A Political Twist: Fraudsters Are Exploiting The Election Season

email security, Emerging Threats, Government, Security Research, Threat Intelligence, Vulnerabilities /

Spam With A Political Twist: Fraudsters Are Exploiting The Election Season 2024-09-17 at 16:01 By The US election is less than 70 days away and threat actors are busy crafting malicious spam that uses candidate names and political themes as social engineering tools to convince recipients to open their emails. This article is an excerpt

React to this headline:

Loading spinner

Spam With A Political Twist: Fraudsters Are Exploiting The Election Season Read More »

Distributed Denial of Truth (DDoT): The Mechanics of Influence Operations and The Weaponization of Social Media

Artificial Intelligence, Emerging Threats, Government, Managed Security Services, Threat Intelligence, Vulnerabilities /

Distributed Denial of Truth (DDoT): The Mechanics of Influence Operations and The Weaponization of Social Media 2024-09-13 at 16:01 By Jose Tozo With the US election on the horizon, it’s a good time to explore the concept of social media weaponization and its use in asymmetrically manipulating public opinion through bots, automation, AI, and shady

React to this headline:

Loading spinner

Distributed Denial of Truth (DDoT): The Mechanics of Influence Operations and The Weaponization of Social Media Read More »

Incident Response Testing: An Australian Perspective

DFIR, Emerging Threats, penetration testing, Trustwave Rapid Response, Vulnerabilities /

Incident Response Testing: An Australian Perspective 2024-08-29 at 16:02 By In today’s rapidly evolving digital landscape, organizations must be prepared for the inevitable occurrence of cybersecurity incidents. Incident response testing is a critical component of a robust cybersecurity strategy, ensuring an organization can swiftly and effectively respond to incidents when they occur. This article highlights

React to this headline:

Loading spinner

Incident Response Testing: An Australian Perspective Read More »

Protecting Patient Safety: Trustwave’s Role in Healthcare Cybersecurity

Database Protection, database security, Emerging Threats, penetration testing, Vulnerabilities /

Protecting Patient Safety: Trustwave’s Role in Healthcare Cybersecurity 2024-08-27 at 19:16 By The healthcare industry’s digital transformation has brought unprecedented advancements in patient care. However, it has also introduced new vulnerabilities that put sensitive patient data at risk. This article is an excerpt from Trustwave Blog View Original Source React to this headline:

React to this headline:

Loading spinner

Protecting Patient Safety: Trustwave’s Role in Healthcare Cybersecurity Read More »

Exposed and Encrypted: Inside a Mallox Ransomware Attack

data breach, Emerging Threats, Security Research, Threat Intelligence /

Exposed and Encrypted: Inside a Mallox Ransomware Attack 2024-08-27 at 16:16 By Bernard Bautista Recently, a client enlisted the support of Trustwave to investigate an unauthorized access incident within its internal cloud-based environment, leading to the deployment of Mallox ransomware by threat actors to its server. This article is an excerpt from SpiderLabs Blog View

React to this headline:

Loading spinner

Exposed and Encrypted: Inside a Mallox Ransomware Attack Read More »

Trustwave Data Reveals HTML Attachments, QR Codes, and BEC as Top Email Attack Vectors

Database Protection, email security, Emerging Threats, Reports, Threat Intelligence /

Trustwave Data Reveals HTML Attachments, QR Codes, and BEC as Top Email Attack Vectors 2024-08-26 at 16:01 By The Trustwave SpiderLabs team regularly collects a trove of data while protecting clients from email-based attacks. HTML attachments, malicious QR codes, and business email compromise (BEC) are the favored attack methods. This article is an excerpt from Trustwave Blog

React to this headline:

Loading spinner

Trustwave Data Reveals HTML Attachments, QR Codes, and BEC as Top Email Attack Vectors Read More »

Defending Healthcare: Trustwave’s Dedication to Fight Cyber Threats to Patient Safety

Emerging Threats /

Defending Healthcare: Trustwave’s Dedication to Fight Cyber Threats to Patient Safety 2024-08-15 at 18:31 By Hospitals face a challenging dilemma: delivering the highest quality of medical care while shielding patient and family data from ever-evolving cyber threats, all while ensuring that critical operations continue uninterrupted. This article is an excerpt from Trustwave Blog View Original

React to this headline:

Loading spinner

Defending Healthcare: Trustwave’s Dedication to Fight Cyber Threats to Patient Safety Read More »

Harris-Trump Presidential Election: Looking at the Threats and Cybersecurity Challenges

Emerging Threats /

Harris-Trump Presidential Election: Looking at the Threats and Cybersecurity Challenges 2024-08-14 at 21:16 By Jose Luis Riveros With less than three months to go until the 2024 US presidential election and with possible cyberattacks and data leaks already impacting campaign activities, the US Office of the Director of National Intelligence (ODNI) and Microsoft have issued separate reports on the tactics they see being

React to this headline:

Loading spinner

Harris-Trump Presidential Election: Looking at the Threats and Cybersecurity Challenges Read More »

Placing Threat Groups Under a Microscope: Lapsus$

Emerging Threats /

Placing Threat Groups Under a Microscope: Lapsus$ 2024-08-02 at 17:01 By This report is the first in a series of blogs that will delve into the deep research the SpiderLabs Threat Intelligence team conducts daily on the major threat actor groups currently operating globally. The information gathered is part of a data repository to help

React to this headline:

Loading spinner

Placing Threat Groups Under a Microscope: Lapsus$ Read More »

CISA-FBI Issue Security Warning for Chinese-Manufactured Drones

Emerging Threats /

CISA-FBI Issue Security Warning for Chinese-Manufactured Drones 2024-08-01 at 21:46 By Allen Numerick Drones are becoming ubiquitous. They are sold as toys, used in industry, and as weapons of war, so the possibility of one becoming co-opted by a threat actor could result in severe damage, disruption of services, or data theft. This article is

React to this headline:

Loading spinner

CISA-FBI Issue Security Warning for Chinese-Manufactured Drones Read More »

Trustwave SpiderLabs: SYS01 and Rilide Linked to Same Actor

Emerging Threats /

Trustwave SpiderLabs: SYS01 and Rilide Linked to Same Actor 2024-07-31 at 16:07 By Drawing on extensive proprietary research, Trustwave SpiderLabs believes the threat actors behind the Facebook malvertising infostealer SYS01 are the same group that developed the previously reported Rilide malware. This article is an excerpt from Trustwave Blog View Original Source React to this

React to this headline:

Loading spinner

Trustwave SpiderLabs: SYS01 and Rilide Linked to Same Actor Read More »

Is it Time to Rethink Your Security Stack?

Emerging Threats /

Is it Time to Rethink Your Security Stack? 2024-07-26 at 16:01 By The cybersecurity threat landscape is constantly evolving, requiring organizations to regularly evaluate their security stack to ensure it not only offers the highest level of protection, but is operated by a firm with a long track record of developing, implementing, and properly maintaining

React to this headline:

Loading spinner

Is it Time to Rethink Your Security Stack? Read More »

Trustwave Response: CrowdStrike Falcon Outage Update

Emerging Threats /

Trustwave Response: CrowdStrike Falcon Outage Update 2024-07-19 at 23:16 By Trustwave is proactively assessing and monitoring our clients who may have been impacted by CrowdStrike’s recently rolled-out update for its Windows users. The critical issue identified with CrowdStrike Falcon may result in a Blue Screen of Death (BSOD) on Windows systems, affecting systems worldwide in

React to this headline:

Loading spinner

Trustwave Response: CrowdStrike Falcon Outage Update Read More »

How Cybercriminals Use Breaking News for Phishing Attacks

Emerging Threats /

How Cybercriminals Use Breaking News for Phishing Attacks 2024-07-19 at 23:16 By Trustwave SpiderLabs issued a warning that threat actors may attempt to take advantage of CrowdStrike’s software update that caused widespread outages by using the news as the center of a social engineering scheme to convince people to open malicious phishing emails or fall for other

React to this headline:

Loading spinner

How Cybercriminals Use Breaking News for Phishing Attacks Read More »

Trustwave SpiderLabs: The Unique Factors that Make Professional Services a Target

Emerging Threats /

Trustwave SpiderLabs: The Unique Factors that Make Professional Services a Target 2024-07-08 at 17:01 By Trustwave SpiderLabs has put together nine vertical threat reports over the past 12 months, but in its most recent effort, the 2024 Professional Services Threat Landscape: Trustwave Threat Intelligence Briefing and Mitigation Strategies report, our team of elite researchers delve into one

React to this headline:

Loading spinner

Trustwave SpiderLabs: The Unique Factors that Make Professional Services a Target Read More »

Scroll to Top