Threat Intelligence

Security Pros: Before You Do Anything, Understand Your Threat Landscape

Incident Response, Threat Intelligence /

Security Pros: Before You Do Anything, Understand Your Threat Landscape 25/05/2023 at 17:48 By Marc Solomon Regardless of the use case your security organization is focused on, you’ll likely waste time and resources and make poor decisions if you don’t start with understanding your threat landscape. The post Security Pros: Before You Do Anything, Understand […]

React to this headline:

Loading spinner

Security Pros: Before You Do Anything, Understand Your Threat Landscape Read More »

European Cybersecurity Firm Sekoia.io Raises $37.5 Million

Cybersecurity Funding, funding, Threat Intelligence, XDR /

European Cybersecurity Firm Sekoia.io Raises $37.5 Million 25/05/2023 at 16:03 By Ionut Arghire European XDR and threat intelligence provider Sekoia.io has raised €35 million ($37.5 million) in Series A funding. The post European Cybersecurity Firm Sekoia.io Raises $37.5 Million appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

European Cybersecurity Firm Sekoia.io Raises $37.5 Million Read More »

Obsidian ORB Ransomware Demands Gift Cards as Payment

AES Cryptographic Provider, All, BlackSnake, Chaos Ransomware, cybercrime, darkweb, data breach, Data leak, Gift Card, Malware, Microsoft Enhanced RSA, Obsidian ORB, Obsidian ORB Ransomware, Onyx, Payday, Paysafe, Ransomware, Steam, Threat Intelligence /

Obsidian ORB Ransomware Demands Gift Cards as Payment 25/05/2023 at 09:16 By cybleinc Cyble Research & Intelligence Labs analyzes Obsidian ORB, a ransomware hybrid that demands ransom payments in the form of gift cards. The post Obsidian ORB Ransomware Demands Gift Cards as Payment appeared first on Cyble. This article is an excerpt from Cyble

React to this headline:

Loading spinner

Obsidian ORB Ransomware Demands Gift Cards as Payment Read More »

Notable DDoS Attack Tools and Services Supporting Hacktivist Operations in 2023

Artemis C2 DDoS Botnet, cybercrime, darkweb, DDoS, DDoS Attack, DDosia Project, Hacktivism, Killnet, Killnet DDoS, Malware, Neferian Empire DDoS Botnet, RedStress.io DDoS Panel, SkyElite-Net DDoS, Stressbot.io, Tesla Botnet, Threat Intelligence, Ziyaettin DDoS Botnet /

Notable DDoS Attack Tools and Services Supporting Hacktivist Operations in 2023 24/05/2023 at 18:26 By cybleinc Cyble Research & Intelligence Labs analyzes the growing use of DDoS attacks by Hacktivist groups across the world. The post Notable DDoS Attack Tools and Services Supporting Hacktivist Operations in 2023 appeared first on Cyble. This article is an

React to this headline:

Loading spinner

Notable DDoS Attack Tools and Services Supporting Hacktivist Operations in 2023 Read More »

Virtual Event Today: Threat Detection and Incident Response Summit

Featured, Malware & Threats, Threat Intelligence, Training & Awareness /

Virtual Event Today: Threat Detection and Incident Response Summit 24/05/2023 at 11:16 By Mike Lennon Join thousands of attendees as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack. (Register Now) The post Virtual Event Today: Threat Detection and Incident Response Summit appeared first

React to this headline:

Loading spinner

Virtual Event Today: Threat Detection and Incident Response Summit Read More »

New MDBotnet Unleashes DDoS Attacks

botnet DDoS, cybercrime, darkweb, DDoS, DDoS Attack, DDOS-as-a-Service, Hacktivism, Hacktivists, HTTPGetAttack, Malware, MDBotnet, MDBotnetUpdater, SlavaRussia, svhost.exe, SYN, SYNAttack, Threat Intelligence /

New MDBotnet Unleashes DDoS Attacks 23/05/2023 at 18:03 By cybleinc Cyble Research & Intelligence Labs analyzes MDBotnet, a malware variant of Russian origin, carrying out DDoS-as-a-Service attacks. The post New MDBotnet Unleashes DDoS Attacks appeared first on Cyble. This article is an excerpt from Cyble View Original Source React to this headline:

React to this headline:

Loading spinner

New MDBotnet Unleashes DDoS Attacks Read More »

New Ransomware Wave Engulfs over 200 Corporate Victims

8Base Ransomware, AES, cybercrime, darkweb, data breach, Data leak, Double encryption, Leak site, MalasLocker, Malware, MalwareHunterTeam, Ransomware, Rhysida, Threat Intelligence, Zscaler /

New Ransomware Wave Engulfs over 200 Corporate Victims 23/05/2023 at 17:34 By cybleinc CRIL analyzes multiple new Ransomware families that have affected over 200 firms, spearheaded by Rhysida, 8Base, and MalasLocker ransomware. The post New Ransomware Wave Engulfs over 200 Corporate Victims appeared first on Cyble. This article is an excerpt from Cyble View Original

React to this headline:

Loading spinner

New Ransomware Wave Engulfs over 200 Corporate Victims Read More »

DarkBERT could help automate dark web mining for cyber threat intelligence

Artificial Intelligence, dark web, Don't miss, Hot stuff, News, research, Threat Intelligence /

DarkBERT could help automate dark web mining for cyber threat intelligence 19/05/2023 at 13:05 By Helga Labus Researchers have developed DarkBERT, a language model pretrained on dark web data, to help cybersecurity pros extract cyber threat intelligence (CTI) from the Internet’s virtual underbelly. DarkBERT pretraining process and evaluated use case scenarios (Source: KAIST/S2W) DarkBERT: A

React to this headline:

Loading spinner

DarkBERT could help automate dark web mining for cyber threat intelligence Read More »

AndoryuBot’s DDOS Rampage

All, AndoryuBot, CGSI, CISA, cybercrime, Cyble Global Sensor Network, darkweb, data breach, Data leak, DDoS, Fortinet, HTTP GET, Malware, Ransomware, RCE, Remote Control Execution, Ruckus Wireless, Telegram, Threat Intelligence /

AndoryuBot’s DDOS Rampage 17/05/2023 at 18:49 By cybleinc CRIL analyzes AndoryuBot, a new botnet exploiting a critical vulnerability to carry out large-scale DDOS attacks on Ruckus Wireless products. The post AndoryuBot’s DDOS Rampage appeared first on Cyble. This article is an excerpt from Cyble View Original Source React to this headline:

React to this headline:

Loading spinner

AndoryuBot’s DDOS Rampage Read More »

BlackSuit Ransomware Strikes Windows and Linux Users

BlackSuit, cybercrime, Cylance, darkweb, data breach, Linux, Malware, Ransomware, Royal Ransomware, Threat Intelligence, Unit 42, VMWare, Windows /

BlackSuit Ransomware Strikes Windows and Linux Users 12/05/2023 at 17:02 By cybleinc Cyble Research & Intelligence Labs analyzes a new ransomware named BlackSuit which can target Windows and Linux operating systems. The post BlackSuit Ransomware Strikes Windows and Linux Users appeared first on Cyble. This article is an excerpt from Cyble View Original Source React

React to this headline:

Loading spinner

BlackSuit Ransomware Strikes Windows and Linux Users Read More »

Dissecting Rancoz Ransomware

@siri_urz, Avast, Avira, b95a4443bb8bff80d..., Backups, ChaChapoly, Chrome, Command Line Arguments, Common7, Comodo, cybercrime, darkweb, data breach, Data leak, Dell, Dr.Web, ESET, Install Shield Installation Information, Intel, Kaspersky Lab, Malware, McAfee, Microsoft Help, Microsoft SDKs, Microsoft Shared, Microsoft Visual Studio, Microsoft VS Code, Microsoft.NET, MingGW, MingGW (GCC), MovieMaker, NTRU, NTRU Public Key, NVIDIA Corporation, Onion, Opera, OSINT, Package Cache, Rancoz, Ransomware, RDP, Reference assemblies, Remote Access Trojans, Remote Desktop Protocol, ShadowCopy, ShellExecute, Spytechsoftware, Symantec, Symantec Client Security, System Volume Information, Threat Intelligence, Vice Society, Windows, Windows App Certification Kit, Windows Defender, Windows Mail, Windows Media Player, Windows Multimedia Platform, Windows NT, Windows Phone Silverlight Kits, Windows Photo Viewer, Windows Portable Devices, Windows Security, WindowsApps, WindowsPowerShell, Wsus, Yandex Browser /

Dissecting Rancoz Ransomware 11/05/2023 at 15:46 By cybleinc CRIL analyzes Rancoz, a new ransomware variant that is leveraging Vice Society’s codebase to target a wider victim base. The post Dissecting Rancoz Ransomware appeared first on Cyble. This article is an excerpt from Cyble View Original Source React to this headline:

React to this headline:

Loading spinner

Dissecting Rancoz Ransomware Read More »

Unraveling Akira Ransomware

Akira, Canada, Construction, cybercrime, data breach, Data leak, Double encryption, healthcare, Leaked data, Malware, Manufacturing, North America, PowerShell, Ransom note, Ransomware, Threat Intelligence, United States /

Unraveling Akira Ransomware 10/05/2023 at 12:33 By cybleinc CRIL analyzes Akira, a Ransomware variant that is rapidly expanding its list of targets, primarily focused on the United States and Canada. The post Unraveling Akira Ransomware appeared first on Cyble. This article is an excerpt from Cyble View Original Source React to this headline:

React to this headline:

Loading spinner

Unraveling Akira Ransomware Read More »

Sophisticated DarkWatchMan RAT Spreads Through Phishing Sites

cybercrime, DarkWatchMan, Data leak, fake app, Malware, Mircrosoft, Ransomware, Remote Access Trojan, Task Scheduler, Threat Intelligence, Windows, Windows Registry /

Sophisticated DarkWatchMan RAT Spreads Through Phishing Sites 07/05/2023 at 18:24 By cybleinc Cyble Research & Intelligence Labs analyzes DarkWatchman, a Remote Access Trojan that has been spreading via Phishing sites. The post Sophisticated DarkWatchMan RAT Spreads Through Phishing Sites appeared first on Cyble. This article is an excerpt from Cyble View Original Source React to

React to this headline:

Loading spinner

Sophisticated DarkWatchMan RAT Spreads Through Phishing Sites Read More »

New KEKW Malware Variant Identified in PyPI Package Distribution

.whl, 7Star, Amigo, Bitcoin, Brave, Cent Browser, Chrome, Clipper, cryptocurrecy, cybercrime, darkweb, Epic browser, fake app, Firefox, Google Chrome, Grabber, Info stealer, Iridium, KEKW, Kometa, Malware, Microsoft, Microsoft Edge, Minecraft, Orbitum, PyPI, Python, pythonsqlitetool, Roblox, Sputnik, Threat Intelligence, Torch, Video games, Vivaldi, Windows, Yandex /

New KEKW Malware Variant Identified in PyPI Package Distribution 07/05/2023 at 18:24 By cybleinc CRIL analyzes a new KEKW Malware variant with stealer & Clipper functionalities being distributed via PyPI Packages. The post New KEKW Malware Variant Identified in PyPI Package Distribution appeared first on Cyble. This article is an excerpt from Cyble View Original

React to this headline:

Loading spinner

New KEKW Malware Variant Identified in PyPI Package Distribution Read More »

BlackBit Ransomware: A Threat from the Shadows of LokiLocker

.NET, .NET compiler, .NET Reactor, APT, BlackBit, Chrome, cybercrime, darkweb, Data leak, Defense Evasion, Encryption, Excel, Firefox, firewall, Leak site, LokiLocker, Malware, Microsoft, Microsoft Office, Persistence, RaaS, Ransomware, Ransomware-as-a-Service, Steam, Threat Intelligence, Thunderbird, Visio, Windows, Windows Defender, Wordpad /

BlackBit Ransomware: A Threat from the Shadows of LokiLocker 07/05/2023 at 18:24 By cybleinc CRIL conducts a deep dive analysis into BlackBit, a ransomware variant based on the notorious LokiLocker ransomware. The post BlackBit Ransomware: A Threat from the Shadows of LokiLocker appeared first on Cyble. This article is an excerpt from Cyble View Original

React to this headline:

Loading spinner

BlackBit Ransomware: A Threat from the Shadows of LokiLocker Read More »

Citrix Users at Risk: AresLoader Spreading Through Disguised GitLab Repo

AiD Locker Ransomware, AresLoader, Aurora Stealer, C, Citrix, cybercrime, fake app, GitLab, Hacktivism, IceID, Laplas Clipper, Lumma Stealer, LummaC2 Stealer, MaaS, Malware, Malware-as-a-Service, Repository, StealC, SystemBC RAT, Telegram, Threat Intelligence /

Citrix Users at Risk: AresLoader Spreading Through Disguised GitLab Repo 07/05/2023 at 18:24 By cybleinc CRIL analyzes the spread of AresLoader via a disguised GitLab repo, delivering multiple malware variants to victim systems. The post Citrix Users at Risk: AresLoader Spreading Through Disguised GitLab Repo appeared first on Cyble. This article is an excerpt from

React to this headline:

Loading spinner

Citrix Users at Risk: AresLoader Spreading Through Disguised GitLab Repo Read More »

Scroll to Top