August 2023 – Page 16 – PossibleThreat Articles

Enough attribution to count

August 8, 2023 0 Comments attribution, detection, sophos x-ops, tac, threat activity cluster, threat research

Credit to Author: Chester Wisniewski| Date: Tue, 08 Aug 2023 10:01:37 +0000

Naming and shaming the bad guys can be gratifying, but for practical protection, Threat Activity Clusters are the way

Clustering attacker behavior reveals hidden patterns

August 8, 2023 0 Comments black basta, featured, hive, mdr, Ransomware, royal, sophos x-ops, tac, threat activity cluster, threat research

Credit to Author: Andrew Brandt| Date: Tue, 08 Aug 2023 10:00:11 +0000

A collection of very specific behaviors, observed by Sophos X-Ops incident response analysts in the lead-up to four separate ransomware attacks in the first quarter of 2023, indicates an unexpected connection between the attacks. In the parlance of the Managed Detection and Response (MDR) team, the peculiarly similar details constitute a threat activity cluster that […]

Security TrendMicro

Leverage the AWS Sustainability Pillar to Minimize Environmental Impact

August 7, 2023 0 Comments trend micro devops : article, trend micro devops : aws, trend micro devops : azure, trend micro devops : best practices, trend micro devops : cloud native, trend micro devops : compliance, trend micro devops : conformity, trend micro devops : google cloud platform

Credit to Author: Melissa Clow| Date: Tue, 08 Aug 2023 00:00:00 +0000

One of the key pillars of the AWS Well-Architected Framework (WAF) is sustainability: the idea that cloud applications should be designed to minimize their environmental impact. Gain insight into the WAF sustainability pillar and discover best practices for architecting your cloud applications to improve sustainability.

MalwareBytes Security

FCC comes down hard on robocallers with record $300m fine

August 7, 2023 0 Comments block, calling, cold caller, do not call, FCC, fine, FTC, personal, phone, robocall

Categories: Personal

Tags: FCC

Tags: FTC

Tags: robocall

Tags: cold caller

Tags: calling

Tags: phone

Tags: do not call

Tags: block

Tags: fine

We take a look at a record fine issued by the FCC in relation to a prolific robocalling operation.

MalwareBytes Security

2022’s most routinely exploited vulnerabilities—history repeats

August 7, 2023 0 Comments atlassian, cve-2021-13379, cve-2021-26084, cve-2021-31207, cve-2021-34473, cve-2021-34523, cve-2021-40539, cve-2021-44228, cve-2022-1388, cve-2022-22954, cve-2022-22960, cve-2022-26134, cve-2022-30190, Exploits and vulnerabilities, follina, log4shell, news, proxyshell, zoho manageengine

Categories: Exploits and vulnerabilities

Categories: News

Tags: Zoho ManageEngine

Tags: CVE-2021-40539

Tags: Log4Shell

Tags: CVE-2021-44228

Tags: CVE-2021-13379

Tags: ProxyShell

Tags: CVE-2021-34473

Tags: CVE-2021-31207

Tags: CVE-2021-34523

Tags: CVE-2021-26084

Tags: Atlassian

Tags: CVE-2022-22954

Tags: CVE-2022-22960

Tags: CVE-2022-26134

Tags: CVE-2022-1388

Tags: CVE-2022-30190

Tags: Follina

What can the routinely exploited vulnerabilities of 2022 tell us, and what do we think will make it on to next year’s list?

MalwareBytes Security

New Security Advisor amps up security in minutes

August 7, 2023 0 Comments Business

Categories: Business

The new feature provides comprehensive health score that assesses the quality of your Nebula implementation.

(Read more…)

The post New Security Advisor amps up security in minutes appeared first on Malwarebytes Labs.

MalwareBytes Security

A week in security (July 31 – August 6)

August 7, 2023 0 Comments amp, barracuda, ivanti, meta, minecraft, news, ransomware rollback, teams

Categories: News

Tags: Ivanti

Tags: Meta

Tags: Teams

Tags: ransomware rollback

Tags: AMP

Tags: Minecraft

Tags: Barracuda

A list of topics we covered in the week of July 31 to August 6 of 2023

(Read more…)

The post A week in security (July 31 – August 6) appeared first on Malwarebytes Labs.

Microsoft Security

Cyber Signals: Sporting events and venues draw cyberthreats at increasing rates

August 7, 2023 0 Comments

Credit to Author: Vasu Jakkal| Date: Thu, 03 Aug 2023 10:00:00 +0000

Today we released the fifth edition of Cyber Signals spotlighting threats to large sporting events, based on our learnings and telemetry from delivering cybersecurity support to critical infrastructure facilities during the State of Qatar’s hosting of the FIFA World Cup 2022™.

The post Cyber Signals: Sporting events and venues draw cyberthreats at increasing rates appeared first on Microsoft Security Blog.

Microsoft Security

Midnight Blizzard conducts targeted social engineering over Microsoft Teams

August 7, 2023 0 Comments credential theft, midnight blizzard (nobelium)

Credit to Author: Microsoft Threat Intelligence| Date: Wed, 02 Aug 2023 19:00:00 +0000

Microsoft Threat Intelligence has identified highly targeted social engineering attacks using credential theft phishing lures sent as Microsoft Teams chats by the threat actor that Microsoft tracks as Midnight Blizzard (previously tracked as NOBELIUM).

The post Midnight Blizzard conducts targeted social engineering over Microsoft Teams appeared first on Microsoft Security Blog.