Security Research

Lessons from a Honeypot with US Citizens’ Data

data breach, Database Protection, database security, Government, Security Research, Vulnerabilities /

Lessons from a Honeypot with US Citizens’ Data 2024-11-13 at 20:15 By Radoslaw Zdonczyk and Nikita Kazymirsky Prior to last week’s US Presidential Election, the Trustwave SpiderLabs team was hard at work investigating potential risks and threats to the election system, from disinformation campaigns to nation-state actors looking to exploit vulnerabilities. This article is an […]

React to this headline:

Loading spinner

Lessons from a Honeypot with US Citizens’ Data Read More »

Analyzing Play and LockBit: The Top Ransomware Threats Facing Retailers

data breach, Database Protection, Emerging Threats, Security Research, Threat Intelligence, Vulnerabilities /

Analyzing Play and LockBit: The Top Ransomware Threats Facing Retailers 2024-11-07 at 16:03 By This blog is the latest in a series that delves into the deep research conducted daily by the Trustwave SpiderLabs team on major threat actor groups currently operating globally. This article is an excerpt from Trustwave Blog View Original Source React

React to this headline:

Loading spinner

Analyzing Play and LockBit: The Top Ransomware Threats Facing Retailers Read More »

E-Commerce Security Woes: Millions of Stolen User Sessions Found for Sale

Emerging Threats, Security Research, Threat Intelligence, Vulnerabilities /

E-Commerce Security Woes: Millions of Stolen User Sessions Found for Sale 2024-10-30 at 15:05 By The booming e-commerce industry, with its projected $5 trillion in sales by 2025, has become a prime target for cybercriminals, a fact highlighted in the new Trustwave SpiderLabs report, Retail Sector Deep Dive: Rise of E-Commerce Threats. This article is an excerpt from

React to this headline:

Loading spinner

E-Commerce Security Woes: Millions of Stolen User Sessions Found for Sale Read More »

Trustwave SpiderLabs 2024 Trustwave Risk Radar Report: Defining the Cyber Assault on the Retail Sector

email security, Managed Detection and Response, Reports, Security Research, Threat Intelligence /

Trustwave SpiderLabs 2024 Trustwave Risk Radar Report: Defining the Cyber Assault on the Retail Sector 2024-10-29 at 15:17 By The holiday shopping season is almost here, and according to the 2024 Trustwave Risk Radar Report: Retail Sector, threat actors have honed their skills and are prepared to use ransomware and phishing attacks that leverage well-known online brands

React to this headline:

Loading spinner

Trustwave SpiderLabs 2024 Trustwave Risk Radar Report: Defining the Cyber Assault on the Retail Sector Read More »

2024 Trustwave Risk Radar Report: Cyber Threats to the Retail Sector

email security, Managed Detection and Response, Reports, Security Research, Threat Intelligence /

2024 Trustwave Risk Radar Report: Cyber Threats to the Retail Sector 2024-10-29 at 15:17 By As the holiday shopping season approaches, the 2024 Trustwave Risk Radar Report: Retail Sector reveals that cybercriminals have sharpened their tactics, utilizing ransomware and phishing attacks that exploit well-known online brands to target retailers and consumers directly. This article is an

React to this headline:

Loading spinner

2024 Trustwave Risk Radar Report: Cyber Threats to the Retail Sector Read More »

Threat Actors Zero in on Retailers as the Holiday Shopping Season Approaches

Emerging Threats, Reports, Security Research, Threat Intelligence, Vulnerabilities /

Threat Actors Zero in on Retailers as the Holiday Shopping Season Approaches 2024-10-22 at 17:18 By Trustwave SpiderLabs on October 29 will launch its second deeply researched look into the threats facing the retail sector. This article is an excerpt from Trustwave Blog View Original Source React to this headline:

React to this headline:

Loading spinner

Threat Actors Zero in on Retailers as the Holiday Shopping Season Approaches Read More »

How Threat Actors Conduct Election Interference Operations: An Overview

Artificial Intelligence, Emerging Threats, Government, Security Research, Vulnerabilities /

How Threat Actors Conduct Election Interference Operations: An Overview 2024-10-18 at 21:46 By Pauline Bolaños The major headlines that arose from the three most recent US presidential election cycles illuminated the various fragilities of American election infrastructures and systems. This article is an excerpt from SpiderLabs Blog View Original Source React to this headline:

React to this headline:

Loading spinner

How Threat Actors Conduct Election Interference Operations: An Overview Read More »

Feline Hackers Among Us? (A Deep Dive and Simulation of the Meow Attack)

data breach, Database Protection, Emerging Threats, Security Research, Vulnerabilities /

Feline Hackers Among Us? (A Deep Dive and Simulation of the Meow Attack) 2024-10-17 at 22:04 By Karl Biron Introduction In the perpetually evolving field of cybersecurity, new threats materialize daily. Attackers are on the prowl for weaknesses in infrastructure and software like a cat eyeing its helpless prey. This article is an excerpt from

React to this headline:

Loading spinner

Feline Hackers Among Us? (A Deep Dive and Simulation of the Meow Attack) Read More »

Pronsis Loader: A JPHP-Driven Malware Diverging from D3F@ck Loader

Emerging Threats, Managed Security Services, Security Research, Threat Intelligence, Vulnerabilities /

Pronsis Loader: A JPHP-Driven Malware Diverging from D3F@ck Loader 2024-10-08 at 16:01 By Cris Tomboc and King Orande Trustwave’s Threat Intelligence team has discovered a new malware dubbed Pronsis Loader, with its earliest known variant dating back to November 2023. This article is an excerpt from SpiderLabs Blog View Original Source React to this headline:

React to this headline:

Loading spinner

Pronsis Loader: A JPHP-Driven Malware Diverging from D3F@ck Loader Read More »

What We Know So Far About Zero-Day CUPS Vulnerabilities: CVE-2024-47176, CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177

DFIR, Emerging Threats, Security Research, Threat Intelligence, Trustwave Rapid Response, Vulnerabilities /

What We Know So Far About Zero-Day CUPS Vulnerabilities: CVE-2024-47176, CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177 2024-09-30 at 22:01 By On September 26, 2024, security researcher Simone Margaritelli disclosed the details of four OpenPrinting Common UNIX Printing System (CUPS) vulnerabilities, that, when chained together, can allow malicious actors to launch remote code execution (RCE) attacks on vulnerable systems. This article is

React to this headline:

Loading spinner

What We Know So Far About Zero-Day CUPS Vulnerabilities: CVE-2024-47176, CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177 Read More »

FINRA Warns of Rising Risks as Third-Party Cyberattacks Threaten Financial Services

News, Security Research, Threat Intelligence /

FINRA Warns of Rising Risks as Third-Party Cyberattacks Threaten Financial Services 2024-09-26 at 01:03 By Earlier this month, the Financial Industry Regulatory Authority (FINRA) posted a cybersecurity advisory highlighting the recent cybersecurity risks of third parties impacting its members and financial services organizations. The recently released Trustwave SpiderLabs 2024 Trustwave Risk Radar Report: Financial Services

React to this headline:

Loading spinner

FINRA Warns of Rising Risks as Third-Party Cyberattacks Threaten Financial Services Read More »

HTML Smuggling: How Blob URLs are Abused to Deliver Phishing Content

data breach, email security, Emerging Threats, Security Research, Threat Intelligence, Vulnerabilities /

HTML Smuggling: How Blob URLs are Abused to Deliver Phishing Content 2024-09-24 at 16:01 By Mike Casayuran HTML smuggling techniques have been around for quite some time. A previous Trustwave SpiderLabs’ blog discussed its use in distributing malware by storing binaries in immutable blob data within JavaScript code that gets decoded on the client-side browser, eventually delivering

React to this headline:

Loading spinner

HTML Smuggling: How Blob URLs are Abused to Deliver Phishing Content Read More »

ALPHV BlackCat Ransomware: A Technical Deep Dive and Mitigation Strategies

email security, Emerging Threats, Managed Detection and Response, Security Research, Threat Intelligence, Vulnerabilities /

ALPHV BlackCat Ransomware: A Technical Deep Dive and Mitigation Strategies 2024-09-17 at 16:01 By ALPHV, also known as BlackCat or Noberus, is a sophisticated ransomware group targeting critical infrastructure and various organizations, including being the most active group used to attack the financial services sector. This article is an excerpt from Trustwave Blog View Original

React to this headline:

Loading spinner

ALPHV BlackCat Ransomware: A Technical Deep Dive and Mitigation Strategies Read More »

Spam With A Political Twist: Fraudsters Are Exploiting The Election Season

email security, Emerging Threats, Government, Security Research, Threat Intelligence, Vulnerabilities /

Spam With A Political Twist: Fraudsters Are Exploiting The Election Season 2024-09-17 at 16:01 By The US election is less than 70 days away and threat actors are busy crafting malicious spam that uses candidate names and political themes as social engineering tools to convince recipients to open their emails. This article is an excerpt

React to this headline:

Loading spinner

Spam With A Political Twist: Fraudsters Are Exploiting The Election Season Read More »

How Phishing-as-a-Service Exposes Financial Services to Extensive Threats

data breach, email security, Reports, Security Research, Threat Intelligence, Vulnerabilities /

How Phishing-as-a-Service Exposes Financial Services to Extensive Threats 2024-09-12 at 16:01 By Phishing remains the favored and most successful method of obtaining an initial foothold in a targeted organization. So it should come as no surprise that threat actors have developed turnkey solutions that enable even low-skilled hackers to conduct successful email attacks. This article

React to this headline:

Loading spinner

How Phishing-as-a-Service Exposes Financial Services to Extensive Threats Read More »

Insider Threats: The Hidden Enemy Within Financial Services

Managed Detection and Response, Reports, Security Research, Threat Intelligence, Vulnerabilities /

Insider Threats: The Hidden Enemy Within Financial Services 2024-09-11 at 16:02 By Financial services organizations already face a dizzying array of external threats, but just as dangerous and often harder to spot are the threats posed by people inside their firm, according to the Trustwave SpiderLabs’ Financial Services Deep Dive: Insider Threat. This article is an

React to this headline:

Loading spinner

Insider Threats: The Hidden Enemy Within Financial Services Read More »

Trustwave SpiderLabs Research: Phishing Behind 49% Attacks Against Financial Institutions

Reports, Security Research, Threat Intelligence /

Trustwave SpiderLabs Research: Phishing Behind 49% Attacks Against Financial Institutions 2024-09-10 at 16:01 By The 2024 Trustwave Risk Radar Report: Financial Services Sector underscores the escalating threat landscape facing the industry. This article is an excerpt from Trustwave Blog View Original Source React to this headline:

React to this headline:

Loading spinner

Trustwave SpiderLabs Research: Phishing Behind 49% Attacks Against Financial Institutions Read More »

Trustwave SpiderLabs Research: 20% of Ransomware Attacks in Financial Services Target Banking Institutions

Reports, Security Research, Threat Intelligence /

Trustwave SpiderLabs Research: 20% of Ransomware Attacks in Financial Services Target Banking Institutions 2024-09-10 at 16:01 By The 2024 Trustwave Risk Radar Report: Financial Services Sector underscores the escalating threat landscape facing the industry. This article is an excerpt from SpiderLabs Blog View Original Source React to this headline:

React to this headline:

Loading spinner

Trustwave SpiderLabs Research: 20% of Ransomware Attacks in Financial Services Target Banking Institutions Read More »

Exploring an Experimental Windows Kernel Rootkit in Rust

Security Research, Tips & Tricks, Vulnerabilities /

Exploring an Experimental Windows Kernel Rootkit in Rust 2024-09-09 at 16:02 By memN0ps Around two years ago, memN0ps took the initiative to create one of the first publicly available rootkit proof of concepts (PoCs) in Rust as an experimental project, while learning a new programming language. It still lacks many features, which are relatively easy

React to this headline:

Loading spinner

Exploring an Experimental Windows Kernel Rootkit in Rust Read More »

Scroll to Top