Cloud Security Alliance News Clipping Site

Tag: evasion

  • The Register: Pixel perfect Ghostpulse malware loader hides inside PNG image files

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/10/22/ghostpulse_malware_loader_png/ Source: The Register Title: Pixel perfect Ghostpulse malware loader hides inside PNG image files Feedly Summary: Miscreants combine it with an equally tricky piece of social engineering The Ghostpulse malware strain now retrieves its main payload via a PNG image file’s pixels. This development, security experts say, is “one of the most…

  • Cisco Talos Blog: Akira ransomware continues to evolve

    by

    system automation
    in

    Source URL: https://blog.talosintelligence.com/akira-ransomware-continues-to-evolve/ Source: Cisco Talos Blog Title: Akira ransomware continues to evolve Feedly Summary: As the Akira ransomware group continues to evolve its operations, Talos has the latest research on the group’s attack chain, targeted verticals, and potential future TTPs. AI Summary and Description: Yes **Summary:** The text provides an in-depth analysis of the…

  • The Register: Would banning ransomware insurance stop the scourge?

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/10/14/ransomware_insurance_ban/ Source: The Register Title: Would banning ransomware insurance stop the scourge? Feedly Summary: White House official makes case for ending extortion reimbursements Ransomware attacks are costing businesses and governments billions of dollars and putting people’s lives at risk – in some cases, reportedly causing their deaths.… AI Summary and Description: Yes Summary:…

  • Schneier on Security: Perfectl Malware

    by

    system automation
    in

    Source URL: https://www.schneier.com/blog/archives/2024/10/perfectl-malware.html Source: Schneier on Security Title: Perfectl Malware Feedly Summary: Perfectl in an impressive piece of malware: The malware has been circulating since at least 2021. It gets installed by exploiting more than 20,000 common misconfigurations, a capability that may make millions of machines connected to the Internet potential targets, researchers from Aqua…

  • Wired: The FBI Made a Crypto Coin Just to Catch Fraudsters

    by

    system automation
    in

    Source URL: https://www.wired.com/story/fbi-cryptocurrency-pump-and-dump/ Source: Wired Title: The FBI Made a Crypto Coin Just to Catch Fraudsters Feedly Summary: Plus: New details emerge in the National Public Data breach, Discord gets blocked in Russia and Turkey over alleged illegal activity on the platform, and more. AI Summary and Description: Yes Summary: The text covers significant incidents…

  • Microsoft Security Blog: File hosting services misused for identity phishing

    by

    system automation
    in

    Source URL: https://www.microsoft.com/en-us/security/blog/2024/10/08/file-hosting-services-misused-for-identity-phishing/ Source: Microsoft Security Blog Title: File hosting services misused for identity phishing Feedly Summary: Since mid-April 2024, Microsoft has observed an increase in defense evasion tactics used in campaigns abusing file hosting services like SharePoint, OneDrive, and Dropbox. These campaigns use sophisticated techniques to perform social engineering, evade detection, and compromise identities,…

  • Cloud Blog: UNC1860 and the Temple of Oats: Iran’s Hidden Hand in Middle Eastern Networks

    by

    system automation
    in

    Source URL: https://cloud.google.com/blog/topics/threat-intelligence/unc1860-iran-middle-eastern-networks/ Source: Cloud Blog Title: UNC1860 and the Temple of Oats: Iran’s Hidden Hand in Middle Eastern Networks Feedly Summary: Written by: Stav Shulman, Matan Mimran, Sarah Bock, Mark Lechtik Executive Summary UNC1860 is a persistent and opportunistic Iranian state-sponsored threat actor that is likely affiliated with Iran’s Ministry of Intelligence and Security…