A dual Russian and Israeli national has been charged in the United States for allegedly being the developer of the now-defunct LockBit ransomware-as-a-service (RaaS) operation since its inception in or around 2019 through at least February 2024. Rostislav Panev, 51, was arrested in Israel earlier this August and is currently awaiting extradition, the U.S. Department of Justice … [Read more...] about LockBit Developer Rostislav Panev Charged for Billions in Global Ransomware Damages
Security
Best Practices for Resilient Containers
Docker has revolutionized how applications are developed and delivered by enhancing the efficiency and scaling of containerization. However, the rapid proliferation and wide adoption of Docker technology has increased a number of serious security vulnerabilities. The items below enumerate some key approaches towards optimal security in Docker containers. Key security areas … [Read more...] about Best Practices for Resilient Containers
Detection Logic for Pre-Deployment Malware Scanning
As organizations embrace DevOps practices and CI/CD pipelines to accelerate software delivery, their greater dependency on third-party components can introduce security risks. Because malware can infiltrate an environment during development, it’s important to check for it ahead of deployment. CrowdStrike Falcon® Cloud Security now applies its award-winning sensor … [Read more...] about Detection Logic for Pre-Deployment Malware Scanning
Lazarus Group Spotted Targeting Nuclear Engineers with CookiePlus Malware
The Lazarus Group, an infamous threat actor linked to the Democratic People's Republic of Korea (DPRK), has been observed leveraging a "complex infection chain" targeting at least two employees belonging to an unnamed nuclear-related organization within the span of one month in January 2024. The attacks, which culminated in the deployment of a new modular backdoor referred to … [Read more...] about Lazarus Group Spotted Targeting Nuclear Engineers with CookiePlus Malware
Assessing Misconfigurations with Falcon Exposure Management
As most security teams know, vulnerabilities often steal the limelight with sensational headlines and zero-day exploits. However, lurking beneath the surface are misconfigurations — overlooked risks that can leave even well-protected systems exposed. Addressing these configuration errors is essential. Security configuration assessment (SCA), also known as configuration … [Read more...] about Assessing Misconfigurations with Falcon Exposure Management
Thousands Download Malicious npm Libraries Impersonating Legitimate Tools
Dec 19, 2024Ravie LakshmananSupply Chain / Software Security Threat actors have been observed uploading malicious typosquats of legitimate npm packages such as typescript-eslint and @types/node that have racked up thousands of downloads on the package registry. The counterfeit versions, named @typescript_eslinter/eslint and types-node, are engineered to download a trojan and … [Read more...] about Thousands Download Malicious npm Libraries Impersonating Legitimate Tools
Falcon Platform Wins AAA Award With 100% Accuracy in SE Labs Q3 Test
The CrowdStrike Falcon® platform earns the AAA award in SE Labs Q3 2024 Enterprise Advanced Security TestThe Falcon platform outperformed all other vendors in accurately detecting the real-world cross-domain tradecraft of three infamous adversaries: APT29 (COZY BEAR), SCATTERED SPIDER and the DPRK Ransomware Group. CrowdStrike’s perfect performance — 100% Detection Accuracy, … [Read more...] about Falcon Platform Wins AAA Award With 100% Accuracy in SE Labs Q3 Test
CrowdStrike Leader in 2024 GigaOm Radar for Container Security
Perfect Scores in Key Categories The categories in which CrowdStrike received a 5/5 rating are: Integrated Threat Intelligence, Lifecycle Security Management, Registry Scanning & Monitoring, Flexibility, Management, Interoperability and Scalability. CrowdStrike is clearly focused on delivering the innovative and reliable cloud security solutions that customers … [Read more...] about CrowdStrike Leader in 2024 GigaOm Radar for Container Security
HubPhish Exploits HubSpot Tools to Target 20,000 European Users for Credential Theft
Dec 18, 2024Ravie LakshmananEmail Security / Cloud Security Cybersecurity researchers have disclosed a new phishing campaign that has targeted European companies with an aim to harvest account credentials and take control of the victims' Microsoft Azure cloud infrastructure. The campaign has been codenamed HubPhish by Palo Alto Networks Unit 42 owing to the abuse of HubSpot … [Read more...] about HubPhish Exploits HubSpot Tools to Target 20,000 European Users for Credential Theft
CrowdStrike Named a Leader in GigaOm Radar for Ransomware Prevention
GigaOm noted in its report that a broad platform approach is often required to protect customers from ransomware — and CrowdStrike delivers. “CrowdStrike offers a broad security platform that covers endpoint protection, identity protection, cloud security, IT automation, next-gen SIEM and more. [The] Falcon platform enables comprehensive ransomware detection, prevention, and … [Read more...] about CrowdStrike Named a Leader in GigaOm Radar for Ransomware Prevention