Cybercriminals Contemplate ‘Exploit-as-a-Service’ Model
Cybercriminals' strategies may expand to include an "exploit-as-a-service" business model, report researchers investigating how attackers continue to exploit organizations' weaknesses.
The Digital Shadows Photon Research Team collected evidence from cybercriminal...
Cybercriminals Increasingly Employ Crypto-Mixers to Launder Stolen Profits
Cryptocurrency mixing — a technique that uses pools of cryptocurrency to complicate the tracking of electronic transactions — has become a common service used by cybercriminals and is expected...
Emotet Makes a Comeback
The once-pervasive malware tool Emotet has risen from the ashes months after international law enforcement agencies coordinated a takedown of its botnet infrastructure.
Multiple security vendor research teams have spotted...
The Troubling Rise of Initial Access Brokers
A recent discovery of three separate threat groups using the same infrastructure to carry out a range of malicious activity has focused fresh attention on the growing role of...
Name That Toon: Cubicle for Four
Thanksgiving dinner by candlelight ... and cubicle? What's going on here? Why, it's our latest cartoon in need of a caption! Our favorite one will win a $25 Amazon...
MacOS Zero-Day Used in Watering-Hole Attacks
Apple fixed a zero-day vulnerability in September after being notified that attackers had used the security issue in macOS Catalina — along with a previously known vulnerability — to...
The Troubling Rise of Internet Access Brokers
A recent discovery of three separate threat groups using the same infrastructure to carry out a range of malicious activity has focused fresh attention on the growing role of...
How to Negotiate With Ransomware Attackers
Organizations hit with ransomware often find themselves in a crisis: To pay or not to pay? Most security experts agree payment is not the ideal response to a ransomware...
Open Source Project Aims to Detect Living-Off-the-Land Attacks
Attackers who use standard system commands during a compromise — a technique known as living off the land (LotL) — to avoid detection by defenders and endpoint security software may...
‘Lyceum’ Threat Group Broadens Focus to ISPs
"Lyceum," an advanced persistent threat actor associated with numerous attacks on telecom organizations and oil and natural gas companies in the Middle East since 2017, has recently begun targeting...
