A dual Russian and Israeli national has been charged in the United States for allegedly being the developer of the now-defunct LockBit ransomware-as-a-service (RaaS) operation since its inception in or around 2019 through at least February 2024. Rostislav Panev, 51, was arrested in Israel earlier this August and is currently awaiting extradition, the U.S. Department of Justice … [Read more...] about LockBit Developer Rostislav Panev Charged for Billions in Global Ransomware Damages
Adding Trace Quickview to Logz.io’s Explore
TL;DR In an effort to bring customers closer to unified, end-to-end observability, Logz.io has added a Trace Quickview feature to our Explore user interface. Users can utilize Trace Quickview in Explore to query their Traces account making it easier to see where a span sits within a trace—and what the whole application request looks like. Get detailed, context-rich information … [Read more...] about Adding Trace Quickview to Logz.io’s Explore
Best Practices for Resilient Containers
Docker has revolutionized how applications are developed and delivered by enhancing the efficiency and scaling of containerization. However, the rapid proliferation and wide adoption of Docker technology has increased a number of serious security vulnerabilities. The items below enumerate some key approaches towards optimal security in Docker containers. Key security areas … [Read more...] about Best Practices for Resilient Containers
Detection Logic for Pre-Deployment Malware Scanning
As organizations embrace DevOps practices and CI/CD pipelines to accelerate software delivery, their greater dependency on third-party components can introduce security risks. Because malware can infiltrate an environment during development, it’s important to check for it ahead of deployment. CrowdStrike Falcon® Cloud Security now applies its award-winning sensor … [Read more...] about Detection Logic for Pre-Deployment Malware Scanning
Defeating Fraudsters at the Finish Line: The Power of AI in Gaming Transactions
Video games introduce players to exciting worlds composed of stunning visuals, captivating storylines, and multiplayer experiences. Strategy, action, and community merge together on screen as players drive, fly, fight, and compete toward the end of their mission. Behind the scenes though sits another game of sorts, one that is of vital importance for publishers, … [Read more...] about Defeating Fraudsters at the Finish Line: The Power of AI in Gaming Transactions
Lazarus Group Spotted Targeting Nuclear Engineers with CookiePlus Malware
The Lazarus Group, an infamous threat actor linked to the Democratic People's Republic of Korea (DPRK), has been observed leveraging a "complex infection chain" targeting at least two employees belonging to an unnamed nuclear-related organization within the span of one month in January 2024. The attacks, which culminated in the deployment of a new modular backdoor referred to … [Read more...] about Lazarus Group Spotted Targeting Nuclear Engineers with CookiePlus Malware
Assessing Misconfigurations with Falcon Exposure Management
As most security teams know, vulnerabilities often steal the limelight with sensational headlines and zero-day exploits. However, lurking beneath the surface are misconfigurations — overlooked risks that can leave even well-protected systems exposed. Addressing these configuration errors is essential. Security configuration assessment (SCA), also known as configuration … [Read more...] about Assessing Misconfigurations with Falcon Exposure Management
Thousands Download Malicious npm Libraries Impersonating Legitimate Tools
Dec 19, 2024Ravie LakshmananSupply Chain / Software Security Threat actors have been observed uploading malicious typosquats of legitimate npm packages such as typescript-eslint and @types/node that have racked up thousands of downloads on the package registry. The counterfeit versions, named @typescript_eslinter/eslint and types-node, are engineered to download a trojan and … [Read more...] about Thousands Download Malicious npm Libraries Impersonating Legitimate Tools
Falcon Platform Wins AAA Award With 100% Accuracy in SE Labs Q3 Test
The CrowdStrike Falcon® platform earns the AAA award in SE Labs Q3 2024 Enterprise Advanced Security TestThe Falcon platform outperformed all other vendors in accurately detecting the real-world cross-domain tradecraft of three infamous adversaries: APT29 (COZY BEAR), SCATTERED SPIDER and the DPRK Ransomware Group. CrowdStrike’s perfect performance — 100% Detection Accuracy, … [Read more...] about Falcon Platform Wins AAA Award With 100% Accuracy in SE Labs Q3 Test
Domo Releases 12th Annual “Data Never Sleeps” Report
AI and Collaboration Take Center Stage as Digital Activity Reaches Record Highs Domo (Nasdaq: DOMO) unveiled its annually anticipated 12th edition of Data Never Sleeps, offering a unique snapshot of how digital habits manifest themselves minute by minute. The report shows the world’s internet population has reached a record high of 5.52B people and uncovers signs that AI … [Read more...] about Domo Releases 12th Annual “Data Never Sleeps” Report