What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2024-04-03 13:00:00 | Genai: La prochaine frontière des menaces de sécurité de l'IA GenAI: The next frontier in AI security threats (lien direct) |
> Les acteurs de la menace ne sont pas encore en train d'attaquer une IA générative (Genai) à grande échelle, mais ces menaces de sécurité de l'IA arrivent.Cette prédiction provient de l'indice de renseignement sur les menaces X 2024.Voici un examen des types de renseignements sur les menaces qui sous-tendent ce rapport.Les cyber-criminels changent la mise au point accrue des bavardages sur les marchés illicites et les forums Web sombres sont un signe [& # 8230;]
>Threat actors aren’t attacking generative AI (GenAI) at scale yet, but these AI security threats are coming. That prediction comes from the 2024 X-Force Threat Intelligence Index. Here’s a review of the threat intelligence types underpinning that report. Cyber criminals are shifting focus Increased chatter in illicit markets and dark web forums is a sign […] |
Threat Prediction | ★★★ | |
|
2024-04-02 13:00:00 | L'évolution d'un CISO: comment le rôle a changé The evolution of a CISO: How the role has changed (lien direct) |
> Dans de nombreuses organisations, le directeur de la sécurité de l'information (CISO) se concentre principalement & # 8212;et parfois exclusivement & # 8212;sur la cybersécurité.Cependant, avec les menaces sophistiquées d'aujourd'hui et le paysage des menaces évolutives, les entreprises changent de nombreux rôles & # 8217;Responsabilités et élargir le rôle du CISO est à la pointe de ces changements.Selon Gartner, la pression réglementaire et l'expansion de la surface d'attaque seront [& # 8230;]
>In many organizations, the Chief Information Security Officer (CISO) focuses mainly — and sometimes exclusively — on cybersecurity. However, with today’s sophisticated threats and evolving threat landscape, businesses are shifting many roles’ responsibilities, and expanding the CISO’s role is at the forefront of those changes. According to Gartner, regulatory pressure and attack surface expansion will […] |
Threat | ★★ | |
|
2024-03-21 13:00:00 | Comment j'ai commencé: négociateur de ransomware How I got started: Ransomware negotiator (lien direct) |
> Les rôles spécialisés dans la cybersécurité prolifèrent, ce qui n'est pas surprenant étant donné le paysage des menaces évolutives et l'impact dévastateur des ransomwares sur de nombreuses entreprises.Parmi ces rôles, les négociateurs de ransomwares deviennent de plus en plus cruciaux.Ces négociateurs opèrent sur les lignes de front de la cyber-défense, s'engageant directement avec les cybercriminels pour atténuer l'impact des ransomwares [& # 8230;]
>Specialized roles in cybersecurity are proliferating, which isn’t surprising given the evolving threat landscape and the devastating impact of ransomware on many businesses. Among these roles, ransomware negotiators are becoming more and more crucial. These negotiators operate on the front lines of cyber defense, engaging directly with cyber criminals to mitigate the impact of ransomware […] |
Ransomware Threat | ★★★ | |
|
2024-03-20 13:00:00 | Le secteur de l'énergie britannique fait face à un paysage de menace en expansion The UK energy sector faces an expanding OT threat landscape (lien direct) |
> L'infrastructure critique est attaquée dans presque tous les pays, mais surtout au Royaume-Uni.Le Royaume-Uni était le pays le plus attaqué d'Europe, qui est déjà la région la plus touchée par les cyber-incidents.L'industrie de l'énergie prend le poids de ces cyberattaques, selon IBM & # 8217; s X-Force Threat Intelligence Index 2024. Le secteur de l'énergie [& # 8230;]
>Critical infrastructure is under attack in almost every country, but especially in the United Kingdom. The UK was the most attacked country in Europe, which is already the region most impacted by cyber incidents. The energy industry is taking the brunt of those cyberattacks, according to IBM’s X-Force Threat Intelligence Index 2024. The energy sector […] |
Threat Industrial | ★★★ | |
|
2023-12-19 14:00:00 | Les injections sur le Web sont de retour en augmentation: 40+ banques affectées par une nouvelle campagne de logiciels malveillants Web injections are back on the rise: 40+ banks affected by new malware campaign (lien direct) |
> Les injections Web, une technique privilégiée utilisée par divers chevaux de Troie bancaire, ont été une menace persistante dans le domaine des cyberattaques.Ces injections malveillantes permettent aux cybercriminels de manipuler les échanges de données entre les utilisateurs et les navigateurs Web, compromettant potentiellement des informations sensibles.En mars 2023, des chercheurs en sécurité chez IBM Security Trudieer ont découvert une nouvelle campagne de logiciels malveillants en utilisant JavaScript [& # 8230;]
>Web injections, a favored technique employed by various banking trojans, have been a persistent threat in the realm of cyberattacks. These malicious injections enable cyber criminals to manipulate data exchanges between users and web browsers, potentially compromising sensitive information. In March 2023, security researchers at IBM Security Trusteer uncovered a new malware campaign using JavaScript […] |
Malware Threat | ★★ | |
|
2023-11-14 14:00:00 | L'évolution des ransomwares: leçons pour l'avenir The evolution of ransomware: Lessons for the future (lien direct) |
> Les ransomwares font partie de l'écosystème de la cybercriminalité depuis la fin des années 1980 et restent une menace majeure dans le cyber paysage aujourd'hui.Les attaques en évolution des ransomwares deviennent de plus en plus sophistiquées à mesure que les acteurs de la menace tirent parti des vulnérabilités, de l'ingénierie sociale et des menaces d'initiés.Bien que l'avenir des ransomwares regorge de menaces inconnues, nous pouvons nous tourner vers [& # 8230;]
>Ransomware has been part of the cyber crime ecosystem since the late 1980s and remains a major threat in the cyber landscape today. Evolving ransomware attacks are becoming increasingly more sophisticated as threat actors leverage vulnerabilities, social engineering and insider threats. While the future of ransomware is full of unknown threats, we can look to […] |
Ransomware Vulnerability Threat | ★★★ | |
|
2023-10-27 13:00:00 | L'évolution de 20 ans de conscience de la cybersécurité The evolution of 20 years of cybersecurity awareness (lien direct) |
> Depuis 2004, la Maison Blanche et le Congrès ont désigné le Mois national de sensibilisation à la cybersécurité d'octobre.Cette année marque le 20e anniversaire de cet effort pour sensibiliser à l'importance de la cybersécurité et de la sécurité en ligne.Comment la cybersécurité et les logiciels malveillants ont-ils évolué au cours des deux dernières décennies?Quels types d'outils de gestion des menaces ont fait surface et quand?Le [& # 8230;]
>Since 2004, the White House and Congress have designated October National Cybersecurity Awareness Month. This year marks the 20th anniversary of this effort to raise awareness about the importance of cybersecurity and online safety. How have cybersecurity and malware evolved over the last two decades? What types of threat management tools surfaced and when? The […] |
Malware Tool Threat | ★★ | |
|
2023-10-12 13:00:00 | Comment j'ai commencé: Attack Surface Management How I got started: Attack surface management (lien direct) |
> Alors que le paysage des menaces se multiplie en sophistication et complexité, de nouveaux rôles dans la cybersécurité se présentent plus fréquemment que jamais.Par exemple, attaquez la gestion de la surface.Ces professionnels de la cybersécurité sont responsables de l'identification, de la cartographie et de la sécurisation de tous les actifs numériques externes auxquels l'organisation possède ou est connectée.Cela inclut les serveurs, les domaines, les actifs cloud et tout [& # 8230;]
>As the threat landscape multiplies in sophistication and complexity, new roles in cybersecurity are presenting themselves more frequently than ever before. For example, attack surface management. These cybersecurity professionals are responsible for identifying, mapping and securing all external digital assets an organization owns or is connected to. This includes servers, domains, cloud assets and any […] |
Threat Cloud | ★★★ | |
|
2023-10-03 13:00:00 | L'importance de l'infrastructure comme code (IAC) lors de la sécurisation des environnements cloud The importance of Infrastructure as Code (IaC) when Securing cloud environments (lien direct) |
> Selon le rapport de la menace des données de Thales 2023, 55% des organisations subissant une violation de données ont rapporté & # 8220; Erreur humaine & # 8221;comme cause principale.Ceci est encore aggravé par les organisations confrontées à des attaques de cybercriminels de plus en plus sophistiqués avec une large gamme d'outils automatisés.Alors que les organisations déplacent davantage leurs opérations vers le cloud, elles [& # 8230;]
>According to the 2023 Thales Data Threat Report, 55% of organizations experiencing a data breach have reported “human error” as the primary cause. This is further compounded by organizations now facing attacks from increasingly sophisticated cyber criminals with a wide range of automated tools. As organizations move more of their operations to the cloud, they […] |
Data Breach Threat Cloud | ★★ | |
|
2023-08-24 13:00:00 | Leçons apprises de la violation de Cloud Microsoft Lessons learned from the Microsoft Cloud breach (lien direct) |
> Début juillet, la nouvelle a annoncé que les acteurs de la menace en Chine ont utilisé un défaut de sécurité Microsoft pour exécuter un espionnage hautement ciblé et sophistiqué contre des dizaines d'entités.Les victimes comprenaient le secrétaire au commerce américain, plusieurs responsables du Département d'État américain et d'autres organisations qui ne sont pas encore nommées publiquement.Les responsables et les chercheurs craignent que les produits Microsoft soient [& # 8230;]
>In early July, the news broke that threat actors in China used a Microsoft security flaw to execute highly targeted and sophisticated espionage against dozens of entities. Victims included the U.S. Commerce Secretary, several U.S. State Department officials and other organizations not yet publicly named. Officials and researchers alike are concerned that Microsoft products were […] |
Threat Cloud | ★★★ | |
|
2023-08-15 13:00:00 | Menace de chasse 101: comment dépasser les attaquants Threat hunting 101: How to outthink attackers (lien direct) |
> La chasse aux menaces implique la recherche de menaces et d'adversaires dans une infrastructure numérique de l'organisation que les outils de sécurité existants ne détectent pas.Il recherche de manière proactive des menaces dans l'environnement en supposant que l'adversaire est en train de compromettre l'environnement ou a compromis l'environnement.Les chasseurs de menaces peuvent avoir des objectifs et des mentalités différents tandis que [& # 8230;]
>Threat hunting involves looking for threats and adversaries in an organization’s digital infrastructure that existing security tools don’t detect. It is proactively looking for threats in the environment by assuming that the adversary is in the process of compromising the environment or has compromised the environment. Threat hunters can have different goals and mindsets while […] |
Tool Threat | ★★ | |
|
2023-08-10 13:00:00 | La cyber-stratégie du Pentagone \\'s 2023: ce que vous devez savoir The Pentagon\\'s 2023 cyber strategy: What you need to know (lien direct) |
En mai 2023, le ministère de la Défense (DOD) a publié une feuille d'information non classifiée détaillant sa dernière cyber stratégie.Cette dernière mise à jour est une autre indication de l'intention du Pentagone de lutter contre les acteurs de menace, venant rapidement de la stratégie de sécurité nationale 2022 et de la stratégie de défense nationale 2022.Un résumé plus complet du [& # 8230;]
In May 2023, the Department of Defense (DoD) released an unclassified fact sheet detailing its latest cyber strategy. This latest update is another indication of the Pentagon’s intent to combat threat actors, coming fast on the heels of the 2022 National Security Strategy and the 2022 National Defense Strategy. A more complete summary of the […] |
Threat | ★★ | |
|
2023-08-03 18:00:00 | Bringing threat intelligence and adversary insights to the forefront: X-Force Research Hub (lien direct) | > Aujourd'hui, les défenseurs traitent à la fois un paysage de menace qui change constamment et les attaques constamment qui ont résisté à l'épreuve du temps.L'innovation et les meilleures pratiques coexistent dans le monde criminel, et l'une ne nous distrait de l'autre.IBM X-Force observe continuellement de nouveaux vecteurs d'attaque et de nouveaux logiciels malveillants dans la nature, alors que les adversaires recherchent [& # 8230;]
>Today defenders are dealing with both a threat landscape that’s constantly changing and attacks that have stood the test of time. Innovation and best practices co-exist in the criminal world, and one mustn’t distract us from the other. IBM X-Force is continuously observing new attack vectors and novel malware in the wild, as adversaries seek […] |
Malware Threat | ★★ | |
|
2023-08-03 18:00:00 | Amener les informations sur les menaces et les idées adverses au premier plan: Hub de recherche X-Force Bringing threat intelligence and adversary insights to the forefront: X-Force Research Hub (lien direct) |
> Aujourd'hui, les défenseurs traitent à la fois un paysage de menace qui change constamment et les attaques constamment qui ont résisté à l'épreuve du temps.L'innovation et les meilleures pratiques coexistent dans le monde criminel, et l'une ne nous distrait de l'autre.IBM X-Force observe continuellement de nouveaux vecteurs d'attaque et de nouveaux logiciels malveillants dans la nature, alors que les adversaires recherchent [& # 8230;]
>Today defenders are dealing with both a threat landscape that’s constantly changing and attacks that have stood the test of time. Innovation and best practices co-exist in the criminal world, and one mustn’t distract us from the other. IBM X-Force is continuously observing new attack vectors and novel malware in the wild, as adversaries seek […] |
Malware Threat | ★★ | |
|
2023-07-27 13:00:00 | Comment fonctionne la farce des informations d'identification (et comment l'arrêter) How credential stuffing works (and how to stop it) (lien direct) |
> En décembre 2022, les utilisateurs de Norton ont été mis en état d'alerte après que les acteurs de menace ont compromis la demande de sécurité avec une attaque de compensation des informations d'identification.L'équipe de sécurité de Norton a verrouillé environ 925 000 comptes après avoir détecté une vague suspecte de tentatives de connexion des utilisateurs de Norton Password Manager.Après l'enquête, la nouvelle a annoncé que les cybercriminels ont réussi à craquer les codes [& # 8230;]
>In December 2022, Norton users were put on high alert after threat actors compromised the security application with a credential-stuffing attack. Norton’s security team locked down about 925,000 accounts after detecting a suspicious flurry of login attempts from Norton Password Manager users. After the investigation, news broke that the cyber criminals successfully cracked the codes […] |
Threat | ★★ | |
|
2023-06-28 16:00:00 | Comment gérer les cyber-risques pendant les fusions et acquisitions How to Manage Cyber Risk During Mergers and Acquisitions (lien direct) |
> En attirant l'attention des acteurs de la menace, les événements de fusion et d'acquisition (M & # 38; A) sont une source importante de risque de cybercriminalité.À tel point que, selon une étude du 2020 IBM Institute of Business Value, plus d'un dirigeant sur trois a déclaré avoir subi des violations de données qui peuvent être attribuées à M & # 38; une activité pendant l'intégration.Ratings de sécurité, [& # 8230;]
>By attracting attention from threat actors, merger and acquisition (M&A) events are a significant source of cyber crime risk. So much so that, according to a 2020 IBM Institute of Business Value study, more than one in three executives said they experienced data breaches that can be attributed to M&A activity during integration. Security ratings, […] |
Threat | ★★ | |
|
2023-06-26 13:00:00 | All About PowerShell Attacks: La technique n ° 1 ATT & CK All About PowerShell Attacks: The No. 1 ATT&CK Technique (lien direct) |
Comment les cyber-pros priorisent-ils leurs efforts de sécurité?Un bon point de départ est de savoir exactement quelles tactiques, techniques et procédures (TTP) les acteurs des acteurs.Dans un rapport récemment publié, des données agrégées ont été utilisées pour identifier les techniques d'attaque les plus courantes telles que définies par le cadre MITER ATT & # 38; CK.L'étude a révélé que PowerShell Command & # 38;[& # 8230;]
How do cyber pros prioritize their security efforts? A good place to start is knowing exactly what tactics, techniques and procedures (TTP) threat actors use. In a recently published report, aggregated data was used to identify the most common attack techniques as defined by the MITRE ATT&CK framework. The study revealed that PowerShell Command & […] |
Threat | ★★★★ | |
|
2023-06-19 13:00:00 | Une histoire de ransomware et l'écosystème de cybersécurité A History of Ransomware and the Cybersecurity Ecosystem (lien direct) |
> Le nombre et la complexité des outils de cybersécurité ont augmenté à un rythme vertigineux au cours des dernières décennies.À mesure que les cybermenaces comme les ransomwares devenaient plus nombreuses et plus complexes, les outils de gestion des antivirus et des menaces se sont développés pour relever ces défis.Les experts en sécurité se retrouvent désormais souvent avec trop de choix et un marché trop riche en options.Choisir, courir [& # 8230;]
>The number and complexity of cybersecurity tools have grown at a dizzying pace in recent decades. As cyber threats like ransomware became more numerous and complex, antivirus and threat management tools expanded to meet these challenges. Security experts now often find themselves with too many choices and a market too rich with options. Choosing, running […] |
Ransomware Threat | ★★ | |
|
2023-06-01 10:00:00 | Ransomware Renaissance 2023: The Definitive Guide to Stay Safer (lien direct) | > Le ransomware connaît une Renaissance en 2023, certaines sociétés de cybersécurité signalant plus de 400 attaques au mois de mars.Et cela ne devrait pas être une surprise: l'indice de renseignement sur les menaces X 2023 a trouvé des déploiements de porte dérobée & # 8212;MALWORED offrant un accès à distance & # 8212;comme l'action supérieure de l'attaquant en 2022, et prédit bien les échecs de porte dérobée de 2022 [& # 8230;]
>Ransomware is experiencing a renaissance in 2023, with some cybersecurity firms reporting over 400 attacks in the month of March alone. And it shouldn’t be a surprise: the 2023 X-Force Threat Intelligence Index found backdoor deployments — malware providing remote access — as the top attacker action in 2022, and aptly predicted 2022’s backdoor failures […] |
Ransomware Malware Threat | ★★ | |
|
2023-06-01 10:00:00 | Ransomware Renaissance 2023: Le guide définitif pour rester en sécurité Ransomware Renaissance 2023: The Definitive Guide to Stay Safer (lien direct) |
> Le ransomware connaît une Renaissance en 2023, certaines sociétés de cybersécurité signalant plus de 400 attaques au mois de mars.Et cela ne devrait pas être une surprise: l'indice de renseignement sur les menaces X 2023 a trouvé des déploiements de porte dérobée & # 8212;MALWORED offrant un accès à distance & # 8212;comme l'action supérieure de l'attaquant en 2022, et prédit bien les échecs de porte dérobée de 2022 [& # 8230;]
>Ransomware is experiencing a renaissance in 2023, with some cybersecurity firms reporting over 400 attacks in the month of March alone. And it shouldn’t be a surprise: the 2023 X-Force Threat Intelligence Index found backdoor deployments — malware providing remote access — as the top attacker action in 2022, and aptly predicted 2022’s backdoor failures […] |
Ransomware Malware Threat | ★★ | |
|
2023-05-22 13:00:00 | NIST lance l'initiative de cybersécurité pour les petites entreprises NIST Launches Cybersecurity Initiative for Small Businesses (lien direct) |
> Pour les petites organisations, le paysage actuel de la cyber-menace est brutal.Alors que les violations des grands noms volent les gros titres, les petites entreprises souffrent le plus d'attaques de ransomwares.De plus, d'autres études révèlent que seulement la moitié de toutes les petites entreprises sont préparées pour une cyberattaque.Face à ces défis, NIST crée une nouvelle initiative pour aider. & # 160;À [& # 8230;]
>For small organizations, the current cyber threat landscape is brutal. While big-name breaches steal the headlines, small businesses suffer the most from ransomware attacks. Additionally, other studies reveal that only half of all small businesses are prepared for a cyberattack. In the face of these challenges, NIST is creating a new initiative to help. To […] |
Ransomware Threat Studies | ★★ | |
|
2023-05-04 13:00:00 | 79% des cyber-pros prennent des décisions sans renseignement sur les menaces 79% of Cyber Pros Make Decisions Without Threat Intelligence (lien direct) |
> Dans un récent rapport, 79% des pros de la sécurité disent prendre des décisions sans connaissances adverses & # 8220; au moins la majorité du temps. & # 8221;Pourquoi les entreprises ne tirent pas effectivement des entreprises en train de tirer parti de l'intelligence des menaces?Et la C-suite sait-elle que cela se passe?Il n'est pas rare que les attaquants restent cachés au sein d'une organisation des systèmes informatiques pour les périodes prolongées de [& # 8230;]
>In a recent report, 79% of security pros say they make decisions without adversary insights “at least the majority of the time.” Why aren’t companies effectively leveraging threat intelligence? And does the C-Suite know this is going on? It’s not unusual for attackers to stay concealed within an organization’s computer systems for extended periods of […] |
Threat | ★★★ | |
|
2023-05-02 16:00:00 | Rationaliser vos outils de sécurité du cloud hybride Rationalizing Your Hybrid Cloud Security Tools (lien direct) |
> Alors que les cyber-incidents augmentent et que les paysages de menace s'élargissent, davantage d'outils de sécurité ont émergé pour protéger l'écosystème des nuages hybrides.En conséquence, les dirigeants de la sécurité doivent rapidement évaluer leurs outils de sécurité hybrides pour progresser vers un ensemble d'outils centralisés et optimiser les coûts sans compromettre leur posture de sécurité.Malheureusement, ces mêmes dirigeants sont confrontés à une variété de défis.Un [& # 8230;]
>As cyber incidents rise and threat landscapes widen, more security tools have emerged to protect the hybrid cloud ecosystem. As a result, security leaders must rapidly assess their hybrid security tools to move toward a centralized toolset and optimize cost without compromising their security posture. Unfortunately, those same leaders face a variety of challenges. One […] |
Threat Cloud | ★★ | |
|
2023-04-14 13:00:00 | Méthodes de détection: savez-vous où sont vos informations d'identification? Detection Methods: Do You Know Where Your Credentials are? (lien direct) |
> Les logiciels malveillants de volée de l'information sont devenus extrêmement omniprésents ces dernières années.Ce malware récolte des millions d'identification par an, des dispositifs et entreprises de terminaux à travers le monde aux effets dévastateurs. & # 160;En utilisant des méthodes d'attaque hautement automatisées et orchestrées, les acteurs de la menace et les courtiers d'accès initiaux fournissent une approvisionnement sans fin d'identification compromise aux syndicats de cyber-criminels qui utilisent ces informations d'identification [& # 8230;]
>Information-stealing malware has become extremely pervasive in recent years. This malware harvests millions of credentials annually from endpoint devices and enterprises across the globe to devastating effects. Using highly automated and orchestrated attack methods, threat actors and initial access brokers provide an endless supply of compromised credentials to cyber criminal syndicates who use those credentials […] |
Malware Threat | ★★ | |
|
2023-04-12 13:00:00 | Quatre façons de durcir le périmètre de votre réseau Four Ways to Harden Your Network Perimeter (lien direct) |
> Avec la menace des cyberattaques à la hausse dans le monde, durcissant le périmètre du réseau de votre organisation n'a jamais été aussi critique.De nombreuses organisations ont commencé à se concentrer davantage sur la sécurisation et la surveillance activement de leurs actifs confrontés à l'extérieur pour repousser les cyberattaques des acteurs de l'État-nation ennemis et des cybercriminels.En mettant en œuvre les quatre meilleures pratiques énumérées ci-dessous, vous [& # 8230;]
>With the threat of cyberattacks on the rise worldwide, hardening your organization’s network perimeter has never been more critical. Many organizations have begun to focus more on actively securing and monitoring their externally facing assets to fend off cyberattacks from enemy nation-state actors and cyber criminals. By implementing the four best practices listed below, you […] |
Threat | ★★★ | |
|
2023-04-11 19:00:00 | Comment fournir des renseignements sur les menaces pertinentes How to Provide Relevant Threat Intelligence (lien direct) |
> Dans l'évolution de la cybersécurité, le paysage des menaces change en constante évolution tandis que la ligne de défense est toujours inscrite.Les professionnels de la sécurité ont commencé par sécuriser les périmètres, mais nous devons maintenant assumer une violation dans un environnement à fiducie zéro.Cependant, fournir des renseignements pour aider les utilisateurs à rester en avance sur les menaces devient un défi lorsque ces informations sont extrêmement volumineuses [& # 8230;]
>In the evolution of cybersecurity, the threat landscape is ever-changing while the line of defense is ever-shrinking. Security professionals started with securing the perimeters, but now we need to assume a breach in a zero-trust environment. However, providing intelligence to help users stay ahead of threats becomes a challenge when that information is overwhelmingly voluminous […] |
Threat | ★★★ | |
|
2023-04-10 13:00:00 | Comment Lockbit a changé la cybersécurité pour toujours How LockBit Changed Cybersecurity Forever (lien direct) |
> Dans chaque industrie, les visionnaires stimulent les progrès et l'innovation.Certains appellent ces pionniers & # 8220; Crazy & # 8221;.La même règle s'applique au monde des cyber gangs.La plupart des groupes de menaces essaient de maintenir un profil bas.Ils ne semblent pas faire confiance à quiconque et ne veulent pas de contrôle serré sur le flux d'argent. & # 160;Puis est venu Lockbit.Non seulement le groupe maintient [& # 8230;]
>In every industry, visionaries drive progress and innovation. Some call these pioneers “crazy”. The same rule applies to the world of cyber gangs. Most threat groups try to maintain a low profile. They don’t seem to trust anyone and want tight control over money flow. Then along came LockBit. Not only does the group maintain […] |
Threat | ★★ | |
|
2023-03-15 13:00:00 | What is Reverse Tabnabbing and What Can You Do to Stop It? (lien direct) | >Tabnabbing is a phishing method in which attackers take advantage of victims’ unattended browser tabs. After hijacking an inactive tab and redirecting it to malicious URLs, an attacker can perform a phishing attack and execute scripts. With reverse tabnabbing, on the other hand, attackers can actually rewrite the source page after a victim clicks a […] | Threat | ★★★ | |
|
2023-03-14 13:00:00 | Breaking Down a Cyberattack, One Kill Chain Step at a Time (lien direct) | >In today’s wildly unpredictable threat landscape, the modern enterprise should be familiar with the cyber kill chain concept. A cyber kill chain describes the various stages of a cyberattack pertaining to network security. Lockheed Martin developed the cyber kill chain framework to help organizations identify and prevent cyber intrusions. The steps in a kill chain […] | Threat | ★★★ | |
|
2023-03-13 13:00:00 | The Role of Customer Service in Cybersecurity (lien direct) | >The old adage “cybersecurity is everyone’s job” is more true than you might imagine. While not every department is tasked with threat hunting or reviewing detailed vulnerability disclosures, each has a role in protecting the organization from fraudsters and cyber criminals alike. Customer service is uniquely positioned as the face of the company. These departments […] | Vulnerability Threat | ★★★ | |
|
2023-03-09 17:00:00 | Continuous Threat Exposure Management Stops Modern Threats (lien direct) | >The modern threat landscape presents serious challenges to businesses struggling to build their security programs. While these businesses modernize IT and security programs, the attack surface is proliferating. Security leaders must realize that perimeter defenses no longer cope with the expanded attack surface, leaving gaps in security programs. Only by implementing a new systemic approach […] | Threat Guideline | ★★ | |
|
2023-02-16 18:00:00 | Detecting the Undetected: The Risk to Your Info (lien direct) | >IBM’s Advanced Threat Detection and Response Team (ATDR) has seen an increase in the malware family known as information stealers in the wild over the past year. Info stealers are malware with the capability of scanning for and exfiltrating data and credentials from your device. When executed, they begin scanning for and copying various directories […] | Malware Threat | ★★★ | |
|
2023-02-02 14:00:00 | How Do Threat Hunters Keep Organizations Safe? (lien direct) | >Neil Wyler started his job amid an ongoing cyberattack. As a threat hunter, he helped his client discover that millions of records had been stolen over four months. Even though his client used sophisticated tools, its threat-hunting technology did not detect the attack because the transactions looked normal. But with Wyler’s expertise, he was able […] | Threat | ★★ | |
|
2023-01-27 11:00:00 | 5 Golden Rules of Threat Hunting (lien direct) | >When a breach is uncovered, the operational cadence includes threat detection, quarantine and termination. While all stages can occur within the first hour of discovery, in some cases, that’s already too late. Security operations center (SOC) teams monitor and hunt new threats continuously. To ward off the most advanced threats, security teams proactively hunt for […] | Threat | ★★★ | |
|
2023-01-05 17:00:00 | 3 Reasons to Make EDR Part of Your Incident Response Plan (lien direct) | >As threat actors grow in number, the frequency of attacks witnessed globally will continue to rise exponentially. The numerous cases headlining the news today demonstrate that no organization is immune from the risks of a breach. What is an Incident Response Plan? Incident response (IR) refers to an organization’s approach, processes and technologies to detect […] | Threat | ★★ | |
|
2022-11-22 17:00:00 | RansomExx Upgrades to Rust (lien direct) | >IBM Security X-Force Threat Researchers have discovered a new variant of the RansomExx ransomware that has been rewritten in the Rust programming language, joining a growing trend of ransomware developers switching to the language. Malware written in Rust often benefits from lower AV detection rates (compared to those written in more common languages) and this […] | Ransomware Malware Threat | ★★★★ | |
|
2022-11-08 17:15:00 | Defending Education from Cyber Threat Attackers (lien direct) | >Threat actors — and particularly ransomware attackers — have education institutions in their crosshairs. From Vice Society’s September attack on schools in California to Snach’s late October assault on schools in Wisconsin, threat actors are not holding back when it comes to preying on schools. K-12 schools are the most vulnerable within the education industry, […] | Ransomware Threat | ||
|
2022-10-25 10:00:00 | A Day in the Life: Working in Cyber Incident Response (lien direct) | >As a cybersecurity incident responder, your life can go from zero to 100 in a heartbeat. One moment you are sipping a beverage reading the latest threat intelligence or getting the kids ready for bed; the next, you may be lunging for your “go bag” because you cannot remote in to the breached system. It’s […] | Threat | ||
|
2022-09-19 13:00:00 | 3 Reasons Why Technology Integration Matters (lien direct) | >As John Donne once wrote, “No man is an island entire of itself.” With digitalization bridging any distance, the same logic could be applied to tech. Threat actors have vast underground forums for sharing their intelligence, while security professionals remain tight-lipped in a lot of data breach cases. Much like the way a vaccine can […] | Data Breach Threat | ||
|
2022-09-08 13:00:00 | Chasing the Cyber 1%: How to Beat the Cybersecurity Poverty Line (lien direct) | >In cybersecurity, there are the haves and have-nots. For the latter, improving their security posture to defend against threats is rarely straightforward. While attackers become more high-tech, the gap between ‘the cyber 1%’ and those companies below the ‘cybersecurity poverty line’ grows wider. That poses a threat to all companies. What is the cyber poverty […] | Threat | ||
|
2022-08-31 10:00:00 | Cost of a Data Breach: Retail Costs, Risks and Prevention Strategies (lien direct) | >Whether it’s online or brick-and-mortar, every new store or website represents a new potential entry point for threat actors. With access to more personally identifiable information (PII) of customers than most industries, bad actors perceive retail as a great way to cash in on their attacks. Plus, attackers can duplicate attack methods more easily since […] | Threat | ||
|
2022-08-29 13:00:00 | How Cybersecurity Policy Has Changed Since the SolarWinds Attack (lien direct) | >Major cyberattacks since 2019 jolted the U.S. government and software industry into action. The succeeding years have seen executive orders, new funding, two summits and a newfound resolve. Because of those attacks, the federal government aims to fix the open-source software security threat altogether. But what has really come of these efforts in the last […] | Threat | ||
|
2022-08-18 15:58:00 | From Ramnit To Bumblebee (via NeverQuest): Similarities and Code Overlap Shed Light On Relationships Between Malware Developers (lien direct) | >A comparative analysis performed by IBM Security X-Force uncovered evidence that suggests Bumblebee malware, which first appeared in the wild last year, was likely developed directly from source code associated with the Ramnit banking trojan. This newly discovered connection is particularly interesting as campaign activity has so far linked Bumblebee to affiliates of the threat […] | Malware Threat | ||
|
2022-08-16 13:00:00 | X-Force 2022 Insights: An Expanding OT Threat Landscape (lien direct) | >This post was written with contributions from Dave McMillen. So far 2022 has seen international cyber security agencies issuing multiple alerts about malicious Russian cyber operations and potential attacks on critical infrastructure, the discovery of two new OT-specific pieces of malware, Industroyer2 and InController/PipeDream, and the disclosure of many operational technology (OT) vulnerabilities. The OT cyber threat landscape […] | Threat | ||
|
2022-08-11 13:00:00 | Incident Response for Health Care IT: Differences and Drivers (lien direct) | >Threat actors continue to target the health care industry. IBM’s Threat Intelligence Index for 2022 rates the industry as the sixth most targeted. That puts it close behind the energy and retail and wholesale sectors. Certain regions seem to be more prone to attack as well. The Asia-Pacific region accounted for 39% of all health […] | Threat | ★★★ | |
|
2022-08-05 13:00:00 | Fishy Business: What Are Spear Phishing, Whaling and Barrel Phishing? (lien direct) | >For threat actors, phishing embodies the holy trinity of goals: easy, effective and profitable. It’s no wonder that the 2022 X-Force Threat Intelligence Index reports that phishing was the top method used by attackers to breach an organization. Of all the attacks that X-Force remediated in 2021, attackers used phishing in 41% of them. Because […] | Threat | ||
|
2022-07-25 13:00:00 | U.S. Cybersecurity Policy Has Changed Since the Colonial Pipeline Attack (lien direct) | >More than a year ago, a ransomware attack made the news across the nation. The Colonial Pipeline Company announced on May 7, 2021, that the DarkSide Ransomware-as-a-Service group, based in eastern Europe, had hit it. The FBI has since confirmed DarkSide, which has since shut down, as the threat actors. What’s changed about U.S. cyber […] | Ransomware Threat | ||
|
2022-06-28 20:00:00 | Five Key Trends on SOC Modernization (lien direct) | >For SOCs looking to improve their ability to detect and respond to threats efficiently and effectively, Extended Detection and Response (XDR) has generated increasing amounts of excitement and discourse in the industry. XDR was one of the hottest topics at RSA 2022, but like with many “hot new trends,” perspectives on what XDR actually is, […] | Threat | ||
|
2022-06-08 01:26:57 | What TrickBot tells us about the future of (lien direct) | >What TrickBot tells us about the future of malware Malware attackers are increasingly sophisticated. Here’s what to know On TrickBot and the future of malware Malware threats have plagued organizations for decades, but that’s no reason to be complacent with a security strategy that has to date protected your organization. Now more than ever, malware is […] | Malware Threat | ||
|
2022-05-26 13:00:00 | Lessons Learned by 2022 Cyberattacks: X-Force Threat Intelligence Report (lien direct) | >Every year, the IBM Security X-Force team of cybersecurity experts mines billions of data points to reveal today’s most urgent security statistics and trends. This year’s X-Force Threat Intelligence Index 2022 digs into attack types, infection vectors, top threat actors, malware trends and industry-specific insights. This year, a new industry took the infamous top spot: […] | Malware Threat |
To see everything:
Our RSS (filtrered)
