Month: January 2025
Future of Cybersecurity: Will XDR Absorb SIEM & SOAR?
Credit to Author: Chris LaFleur| Date: Fri, 31 Jan 2025 00:00:00 +0000
XDR is reshaping cybersecurity by unifying and enhancing SIEM and SOAR capabilities into a single platform. It addresses alert fatigue, improves incident correlation, simplifies operations, and enhances efficiency for SOC teams.
Read moreFBI, Dutch Police Disrupt ‘Manipulaters’ Phishing Gang
Credit to Author: BrianKrebs| Date: Fri, 31 Jan 2025 18:35:32 +0000
The FBI and authorities in The Netherlands this week seized a number of servers and domains for a hugely popular spam and malware dissemination service operating out of Pakistan. The proprietors of the service, who use the collective nickname “The Manipulaters,” have been the subject of three stories published here since 2015. The FBI said the main clientele are organized crime groups that try to trick victim companies into making payments to a third party.
Read moreCybercrime gets a few punches on the nose
Law enforcement took down several cybercrime forums that sold tools and data to other cybercriminals
Read moreNDR: Not Just a “Nice to Have” Anymore
Credit to Author: Chris LaFleur| Date: Thu, 30 Jan 2025 00:00:00 +0000
Network Detection and Response (NDR) is no longer a ‘nice-to-have’—it’s essential. NDR complements EDR, accelerates incident response, and enhances visibility, making it a critical tool for modern cybersecurity strategies and service providers.
Read moreInfrastructure Laundering: Blending in with the Cloud
Credit to Author: BrianKrebs| Date: Thu, 30 Jan 2025 17:10:08 +0000
In an effort to blend in and make their malicious traffic tougher to block, hosting firms catering to cybercriminals in China and Russia increasingly are funneling their operations through major U.S. cloud providers. Research published this week on one such outfit — a sprawling network tied to Chinese organized crime gangs and aptly named “Funnull” — highlights a persistent whac-a-mole problem facing cloud services.
Read moreMicrosoft advertisers phished via malicious Google ads
Just days after we uncovered a campaign targeting Google Ads accounts, a similar attack has surfaced, this time aimed at Microsoft…
Read moreExposed DeepSeek Database Revealed Chat Prompts and Internal Data
Credit to Author: Lily Hay Newman, Matt Burgess| Date: Wed, 29 Jan 2025 21:34:22 +0000
China-based DeepSeek has exploded in popularity, drawing greater scrutiny. Case in point: Security researchers found more than 1 million records, including user data and API keys, in an open database.
Read moreThe DeepSeek controversy: Authorities ask where does the data come from and how safe is it?
The sudden rise of DeepSeek has raised questions of data origin, data destination, and the security of the new AI model.
Read moreLumma Stealer’s GitHub-Based Delivery Explored via Managed Detection and Response
Credit to Author: Buddy Tancio| Date: Thu, 30 Jan 2025 00:00:00 +0000
The Managed XDR team investigated a sophisticated campaign distributing Lumma Stealer through GitHub, where attackers leveraged the platform’s release infrastructure to deliver malware such as SectopRAT, Vidar, and Cobeacon.
Read more