One of my best friends, my partner in conferences, books, family friend Milad Aslaner wrote a great PowerShell simulation which can help you train your Threat Hunting skills. The good news is its completley FREE , below are the details and download link : Introduction ThreatHunt is a simple PowerShell repository that allows you to train your threat hunting skills. [...]
Microsoft has just released today (10 July 2019) new patches, and here is what you need to know : Microsoft has released 1 advisories, 1 servicing stack update, and 77 updates to vulnerabilities, which 15 of these updates are classified as Critical. Microsoft has fixed two actively exploited Zero Day vulnerabilities that could allow programs to run with higher privilege levels. [...]
Formjacking. Targeted Attacks. Living off the Land. Coming for Your Business. Symantec’s 2019 Internet Security Threat Report takes a deep dive into insights from the world’s largest civilian global intelligence network, revealing: Formjacking attacks skyrocketed, with an average of 4,800 websites compromised each month.Ransomware shifted targets from consumers to enterprises, where infections rose 12 percent.More than 70 million records stolen from [...]
Please go ahead and click the link below to read the full article . Below is a summary for the ones who want see what's in the article : https://www.virusbulletin.com/virusbulletin/2019/06/vb2018-paper-lazarus-group-mahjong-game-played-different-sets-tiles/#ref25 The number of incidents attributed to the Lazarus Group, a.k.a. Hidden Cobra, has grown rapidly since its estimated establishment in 2009. This notorious group intensified its efforts in 2017 (e.g. [...]
Adversary Tradecraft and The Importance of Speed The 2019 CrowdStrike® Global Threat Report offers one of the industry’s most comprehensive reports on today’s top cyberthreats. It combines analysis from CrowdStrike Threat Intelligence, Falcon OverWatch™ managed hunting and the CrowdStrike Services incident response teamshighlighting the most significant events and trends in the past year. It combines CrowdStrike’s comprehensive global observations with real-world case studies to [...]
