Dec 19, 2024Ravie LakshmananSupply Chain / Software Security Threat actors have been observed uploading malicious typosquats of legitimate npm packages such as typescript-eslint and @types/node that have racked up thousands of downloads on the package registry. The counterfeit versions, named @typescript_eslinter/eslint and types-node, are engineered to download a trojan and … [Read more...] about Thousands Download Malicious npm Libraries Impersonating Legitimate Tools
Security
Falcon Platform Wins AAA Award With 100% Accuracy in SE Labs Q3 Test
The CrowdStrike Falcon® platform earns the AAA award in SE Labs Q3 2024 Enterprise Advanced Security TestThe Falcon platform outperformed all other vendors in accurately detecting the real-world cross-domain tradecraft of three infamous adversaries: APT29 (COZY BEAR), SCATTERED SPIDER and the DPRK Ransomware Group. CrowdStrike’s perfect performance — 100% Detection Accuracy, … [Read more...] about Falcon Platform Wins AAA Award With 100% Accuracy in SE Labs Q3 Test
CrowdStrike Leader in 2024 GigaOm Radar for Container Security
Perfect Scores in Key Categories The categories in which CrowdStrike received a 5/5 rating are: Integrated Threat Intelligence, Lifecycle Security Management, Registry Scanning & Monitoring, Flexibility, Management, Interoperability and Scalability. CrowdStrike is clearly focused on delivering the innovative and reliable cloud security solutions that customers … [Read more...] about CrowdStrike Leader in 2024 GigaOm Radar for Container Security
HubPhish Exploits HubSpot Tools to Target 20,000 European Users for Credential Theft
Dec 18, 2024Ravie LakshmananEmail Security / Cloud Security Cybersecurity researchers have disclosed a new phishing campaign that has targeted European companies with an aim to harvest account credentials and take control of the victims' Microsoft Azure cloud infrastructure. The campaign has been codenamed HubPhish by Palo Alto Networks Unit 42 owing to the abuse of HubSpot … [Read more...] about HubPhish Exploits HubSpot Tools to Target 20,000 European Users for Credential Theft
CrowdStrike Named a Leader in GigaOm Radar for Ransomware Prevention
GigaOm noted in its report that a broad platform approach is often required to protect customers from ransomware — and CrowdStrike delivers. “CrowdStrike offers a broad security platform that covers endpoint protection, identity protection, cloud security, IT automation, next-gen SIEM and more. [The] Falcon platform enables comprehensive ransomware detection, prevention, and … [Read more...] about CrowdStrike Named a Leader in GigaOm Radar for Ransomware Prevention
80% of Cybersecurity Leaders Prefer Platform-Delivered GenAI
Adversaries are advancing faster than ever, exploiting the growing complexity of business IT environments. In this high-stakes threat landscape, generative AI (GenAI) is a necessity. With organizations grappling with skills shortages, sophisticated adversaries and operational complexity, 64% of security professionals have already kicked off their GenAI purchase … [Read more...] about 80% of Cybersecurity Leaders Prefer Platform-Delivered GenAI
Attackers Exploit Microsoft Teams and AnyDesk to Deploy DarkGate Malware
Dec 17, 2024Ravie LakshmananMalware / Credential Theft A new social engineering campaign has leveraged Microsoft Teams as a way to facilitate the deployment of a known malware called DarkGate. "An attacker used social engineering via a Microsoft Teams call to impersonate a user's client and gain remote access to their system," Trend Micro researchers Catherine Loveria, Jovit … [Read more...] about Attackers Exploit Microsoft Teams and AnyDesk to Deploy DarkGate Malware
Mamont banker under the guise of a tracking app
We’ve discovered a new scheme of distribution of the Mamont (Russian for mammoth) Trojan banker. Scammers promise to deliver a certain product at wholesale prices that may be considered interesting to small businesses as well as private buyers, and offer to install an Android application to track the package. However, instead of a tracking utility, the victim installs a Trojan … [Read more...] about Mamont banker under the guise of a tracking app
Latin American eCrime Malware Evolution in 2024
Kiron: Rust Adoption and Browser Extensions Community Identifiers: Grandoreiro Type: Banking Trojan and Information Stealer July 2024: NestoLoader Integration Kiron was distributed via NestoLoader, which is a loader written in JPHP — a PHP implementation that runs in the Java virtual machine (VM). JPHP is not commonly used to develop eCrime malware because … [Read more...] about Latin American eCrime Malware Evolution in 2024
Impacts of Government Regulation on PQC Product Availability
In our recent blog, The Countdown Has Begun: Getting Started on your PQC Journey, we discussed both Q-Day, the moment when quantum computers will be able break all decryption, and the risk of Harvest Now, Decrypt Later (HNDL) cyberattacks. We focused on addressing top priority post-quantum cryptography (PQC) capabilities, namely, how to begin the migration to quantum-safe … [Read more...] about Impacts of Government Regulation on PQC Product Availability