mdr – Page 5 – PossibleThreat Articles

Update 5: Information on MOVEit Vulnerabilities CVE-2023-34362, CVE-2023-35036, CVE-2023-35708, and CVE-2023-36934

July 7, 2023 0 Comments cve-2023-34362, cve-2023-35036, cve-2023-35708, cve-2023-36932, cve-2023-36933, cve-2023-36934, dev-0950, Exploit, featured, fin11, mdr, moveit, progress software, security operations, ta505, threat research, vulnerability

Credit to Author: Christopher Budd| Date: Mon, 05 Jun 2023 21:50:09 +0000

Users of the file-transfer package should apply patches immediately and check for indications of possible compromise

Security Sophos

Investigator, API Yourself: Deploying Microsoft Graph on the trail of an attacker

June 30, 2023 0 Comments email compromise, featured, human-led threat hunting, mdr, Microsoft 365, microsoft graph, office 365, security operations, threat research

Credit to Author: gallagherseanm| Date: Fri, 30 Jun 2023 17:47:14 +0000

Two clients, two threat hunts – any connection? Using Microsoft’s cloud-security API to parse piles of disparate data leads to fascinating findings

MalwareBytes Security

CISA updates ransomware guidance

May 24, 2023 0 Comments cisa, Cloud, compromised, guide, mdr, news, Ransomware, stopransomware, zta

Categories: News

Categories: Ransomware

Tags: CISA

Tags: StopRansomware

Tags: guide

Tags: ZTA

Tags: compromised

Tags: cloud

Tags: MDR

CISA has updated its #StopRansomware guide to account for changes in ransomware tactics and techniques.

(Read more…)

The post CISA updates ransomware guidance appeared first on Malwarebytes Labs.

Security Sophos

Whodunnit? Cybercrook gets 6 years for ransoming his own employer

May 12, 2023 0 Comments data loss, doj, FBI, Law & order, mdr, Ransomware, Zero Trust

Credit to Author: Naked Security writer| Date: Fri, 12 May 2023 16:15:37 +0000

Not just an active adversary, but a two-faced one, too.

Security Sophos

Cybersecurity Guide: Securing Government Agencies

May 4, 2023 0 Comments Government, mdr, products & services, sase, secure access portfolio, solutions, sophos mdr, sophos ztna

Credit to Author: Doug Aamoth| Date: Thu, 04 May 2023 14:34:59 +0000

Sophos optimizes defense capabilities and frees up government IT teams to focus on their businesses.

Security Sophos

Update 1: Increased exploitation of PaperCut drawing blood around the Internet

May 2, 2023 0 Comments cve-2023-27350, featured, mdr, mdr flash, papercut, security operations, sophos mdr

Credit to Author: Angela Gunn| Date: Thu, 27 Apr 2023 18:43:38 +0000

A recent remote code execution (RCE) vulnerability is increasingly in use to deliver Cobalt Strike and other remote management software, along with multiple ransomware threats – what you need to know about CVE-2023-27350

Security Sophos

Increased exploitation of PaperCut drawing blood around the Internet

April 27, 2023 0 Comments cve-2023-27350, featured, mdr, mdr flash, papercut, security operations, sophos mdr

Credit to Author: Angela Gunn| Date: Thu, 27 Apr 2023 18:43:38 +0000

Security Sophos

New QakBot C2 servers detected with Sophos NDR

April 24, 2023 0 Comments mdr, ndr, products & services, security operations, sophos mdr, sophos ndr

Credit to Author: Karl Ackerman| Date: Thu, 20 Apr 2023 13:32:24 +0000

Sophos NDR updates detected two new QakBot servers that had not yet been publicly identified.

Security Sophos

Cybersecurity Guide: Securing the Manufacturing Sector

April 17, 2023 0 Comments mdr, products & services, sase, solutions, ztna

Credit to Author: Doug Aamoth| Date: Mon, 17 Apr 2023 20:08:26 +0000

Sophos dramatically reduces the threat response time of manufacturing organizations.

MalwareBytes Security

Pre-ransomware notifications are paying off right from the bat

April 4, 2023 0 Comments cisa, emotet, irs, jcdc, mdr, news, pre-ransomware notifications, Ransomware

Categories: News

Categories: Ransomware

Tags: pre-ransomware notifications

Tags: JCDC

Tags: CISA

Tags: ransomware

Tags: IRS

Tags: Emotet

Tags: MDR

CISA has published the first results of its pre-ransomware notifications that were introduced at the start of 2023. And they appear to be working.