Although machine learning algorithms have been around for years, additional use cases are being discovered and applied all the time, particularly when it comes to network and data security. As years have passed, the skills and sophisticated approaches being utilized by hackers have risen in severity and frequency, and white hats as well as enterprise… Continue reading How Machine Learning can Expose and Illustrate Network Threats
Month: January 2019
Various Google Play “Beauty Camera” Apps Sends Users Pornographic Content, Redirects Them to Phishing Websites and Collects Their Pictures
We discovered several beauty camera apps (detected as AndroidOS_BadCamera.HRX) on Google Play that are capable of accessing remote ad configuration servers that can be used for malicious purposes. Some of these have already been downloaded millions of times, which is unsurprising given the popularity of these kinds of apps. A large number of the download… Continue reading Various Google Play “Beauty Camera” Apps Sends Users Pornographic Content, Redirects Them to Phishing Websites and Collects Their Pictures
Informing Your Security Posture: How Cybercriminals Blend into the Background
Maintaining protection over an enterprise’s critical data, systems and assets is a continual uphill battle. Not only are chances good that the business’s digital footprint is growing through new applications, but hackers are also constantly bolstering their capabilities to silently breach platforms and maintain a presence under the radar of the IT team. In the… Continue reading Informing Your Security Posture: How Cybercriminals Blend into the Background
This Week in Security News: Ransomware and Cyber Threats
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about new routines for encryption of JobCrypter ransomware. Also, understand how Emotet has managed to evolve into one of the most notorious cyber threats in existence.… Continue reading This Week in Security News: Ransomware and Cyber Threats
ThinkPHP Vulnerability Abused by Botnets Hakai and Yowai
By Augusto Remillano II Cybercriminals are exploiting a ThinkPHP vulnerability — one that was disclosed and patched in December 2018 — for botnet propagation by a new Mirai variant we’ve called Yowai and Gafgyt variant Hakai. Cybercriminals use websites created using the PHP framework to breach web servers via dictionary attacks on default credentials and… Continue reading ThinkPHP Vulnerability Abused by Botnets Hakai and Yowai
Impacts to Enterprise Security: A Look at as-a-service Attacks
Ever since certain solutions have begun being offered “as-a-service,” the market for this method of delivery has exploded. Now, elements like software-as-a-service, infrastructure-as-a-service and platform-as-a-service are key mainstay components of enterprise IT, with the market values to prove it. According to MarketWatch, the global SaaS market is on track to expand by a more than… Continue reading Impacts to Enterprise Security: A Look at as-a-service Attacks
Protecting Critical Infrastructure and Roadways: How Smart Cities Create New Risks
Advanced technology has changed countless facets of everyday life, from internal enterprise processes to consumer pursuits and beyond. Even the design, management and support for large and small cities has shifted thanks to innovative smart city systems. While advanced components to support utilities, critical infrastructure, traffic and more can bring numerous benefits, these solutions also open… Continue reading Protecting Critical Infrastructure and Roadways: How Smart Cities Create New Risks
Going In-depth with Emotet: Multilayer Operating Mechanisms
Over a period of just five years, Emotet has managed to evolve into one of the most notorious cyber threats in existence – one that causes incidents that cost up to $1 million dollars to rectify, according to US-CERT. We recently reported about Emotet’s activities as well as its two infrastructure setups. This follow-up blog… Continue reading Going In-depth with Emotet: Multilayer Operating Mechanisms
BEC Will Reach Two Levels Deeper
In our predictions report for 2019, “Mapping the Future: Dealing with Pervasive and Persistent Threats,” we foresaw an increase in the rate of BEC (business email compromise) attacks: “Business email compromise will go two levels down in the org chart.” From the report: “Business email compromise (BEC) remains a very potent and… Continue reading BEC Will Reach Two Levels Deeper
This Week in Security News: Risky Radio Remotes and Cybercrime
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about Trend Micro’s new research on radio frequency technology and the risks of radio remote controllers. Also, understand why there is a rise in physical crime… Continue reading This Week in Security News: Risky Radio Remotes and Cybercrime