News

Latest news about B2B cyber security >>> PR agencies: add us to your mailing list - see contact! >>> Book an exclusive PartnerChannel for your news!

ESET unmasks structure of spy APT group TA410 
Eset_News

ESET Research reveals a detailed profile of TA410, a cyber espionage group loosely cooperating with APT10. This has been known to target US organizations in the utility sector and diplomatic organizations in the Middle East and Africa. The researchers at the European IT security manufacturer assume that this group consists of three different teams using different toolsets. This toolbox also includes a new version of FlowCloud. This is a very complex backdoor with extensive espionage capabilities. ESET will provide its latest findings on TA410, including the results of ongoing research, during...

Read more

BSI lists CrowdStrike as a qualified APT response service provider
B2B Cyber ​​Security ShortNews

CrowdStrike, a leading provider of cloud-based protection for endpoints, workloads, identity and data, has been included in the list of qualified APT response service providers by the German Federal Office for Information Security (BSI). The BSI list helps companies, operators of critical infrastructures and government institutions in their search for qualified security service providers to defend against ongoing or past attacks on their IT infrastructures. CrowdStrike's full-service IR offering meets the strict criteria of the BSI law according to § 3 BSIG and is recommended for responding to APT attacks (Advanced Persistent Threats). BSI recognition underscores CrowdStrike’s leadership role…

Read more

Webinar April 21, 2022: Resilience against cyber espionage campaigns
B2B Cyber ​​Security ShortNews

Trellix invites you to the free webinar on April 21, 2022 from 14:00 p.m. “Operation Graphite – Strengthening resilience against cyber espionage campaigns”. This is how threat actors exploit trusted avenues within the organization to slowly and stealthily defeat standard security controls. Organizations are beefing up their security measures and implementing more robust authentication and network security controls, leaving attackers looking for another route to success. One such new avenue is "Operation Graphite," uncovered by the Trellix Advanced Threat Research team. In this webinar, we'll explore how threat actors are exploiting trusted enterprise avenues to slowly and stealthily defeat standard security controls,...

Read more

Kaspersky: Threat Intelligence Platform is now free
Kaspersky: Threat Intelligence Platform is now free

Kaspersky currently offers free use of its Kaspersky Threat Intelligence Platform. While previously only the individual file or link analysis was free, the professional platform for analysis can now be used completely free of charge for threat lookup, cloud sandbox, APT, crimeware and ICS threat intelligence reporting. Kaspersky addresses users directly on its website: “We are monitoring events in and around Ukraine very closely. These are difficult and uncertain times, but protecting all of our customers from cyber threats is our top priority. We assume that the current...

Read more

ESET analyzes APT attacks on Windows kernel
Eset_News

Unguarded control center: ESET analyzes attacks on Windows kernel. European IT security manufacturer publishes new research results on how APT groups (Advanced Persistent Threat) exploit the vulnerabilities for attacks. ESET Research department publishes the results of their vulnerability analysis of signed Windows kernel drivers. According to the security experts, these are increasingly being used by so-called APT (Advanced Persistent Threat) groups exploited for targeted attacks against companies. The detailed technical analyzes and effective defense techniques are now available as a blog post on WeLiveSecurity. Background on Windows kernel drivers In Microsoft Windows operating systems there are different types of kernel drivers. While device drivers require a rigorous development process focused on...

Read more

Spyware campaign hit ICS computers worldwide
Kaspersky_news

Thousands of industrial computers worldwide were affected by a spyware campaign. 1,6 percent of the affected ICS computers in Germany. The malware used shows similarities with Lazarus. From mid-January to mid-November 2021, Kaspersky experts observed new malware that infected more than 35.000 computers in 195 countries. The 'PseudoManuscrypt' malware shows similarities to the 'Manuscrypt' malware from the Advanced Persistent Threat (APT) group Lazarus. It has advanced espionage capabilities and has so far been detected in attacks on government organizations and industrial control systems (ICS). 35.000 ICS computers affected Industrial companies are among the most sought-after targets for cybercriminals - both from...

Read more

FBI warns of Cuba ransomware group
B2B Cyber ​​Security ShortNews

49 organizations from five sectors of the critical infrastructure were attacked by the ransomware group Cuba, according to the FBI. The damage is at least $ 43,9 million. At the end of last week, the American FBI issued a warning warning of the machinations of the Cuba ransomware group. Recently, it appears to have been targeting companies in the finance, healthcare, manufacturing, information technology and government organizations that are part of the critical infrastructure in particular. The press release reported 49 known cases in which at least $ 43,9 million in ransom were extorted. As if this sum ...

Read more

APT forecasts 2022: supply chain attacks
APT forecasts 2022: supply chain attacks

The Kaspersky researchers present their predictions in the area of ​​Advanced Persistent Threats (APTs) for the coming year 2022. Accordingly, the politicization of cyberspace will play an increasing role. They expect a return of low-level attacks, new APT actors and an increase in supply chain attacks. The global changes in 2021 will have a direct impact on the development of advanced attacks in the coming year. Building on the trends observed by the Kaspersky Global Research and Analysis Team (GReAT) in 2021, the researchers have created a forecast to help the IT community focus on the ...

Read more

Advanced Persistent Threats: Advanced threats

Advanced Persistent Threats (APT) are attacks in which hackers gain access to a system or network and stay there unnoticed for a long period of time. This is particularly dangerous for companies, as it gives cyber criminals constant access to sensitive data. These APT attacks also avoid detection by traditional security measures due to their sophisticated evasion and obfuscation tactics. The following article describes how cybercriminals respond to their attacks, how companies can identify warning signs of an APT attack, and best practices to reduce the risk of these threats. How Advanced Persistent Threats - APTs Work ...

Read more

APT group specifically attacks diplomats
Eset_News

New APT group is targeting diplomats: ESET researchers have followed and analyzed the activities of the hacker group in Europe, Asia and Africa. ESET researchers have discovered a new APT group called BackdoorDiplomacy. The hackers are primarily targeting foreign ministries in the Middle East and Africa. But they have also become active in Germany and Austria. Activities in Germany too Your attacks usually start with the exploitation of vulnerable applications on web servers in order to install a custom backdoor, which ESET calls Turian. The researchers of the European ...

Read more