security operations – Page 11 – PossibleThreat Articles

Uber, Rockstar fall to social-engineering attacks; and you?

September 22, 2022 0 Comments electronic arts, iab, lapsus, rockstar, security operations, uber

Credit to Author: Chester Wisniewski| Date: Thu, 22 Sep 2022 18:31:26 +0000

Security pros often talk of security being a process and a system, not a destination, and the recent news from Uber and Rockstar Games is just another example. Details are still emerging, but we can still analyze these breaches at a high level and apply these lessons to our own information security programs. Similar to […]

Security Sophos

Six months on: Looking back at the role of cyberattacks in the Ukraine War

September 14, 2022 0 Comments featured, geopolitics, russia, security operations, sophos x-ops, ukraine

Credit to Author: Chester Wisniewski| Date: Wed, 14 Sep 2022 13:00:39 +0000

When Russia invaded Ukraine on February 24th 2022, none of us knew what role cyberattacks might play in a full-scale invasion. Russia had been conducting cyberattacks against Ukraine since it had occupied Crimea back in 2014 and it seemed inevitable that these tools would play a role, especially after the attacks on Ukraine’s power grid […]

Security Sophos

Lockbit, Hive, and BlackCat attack automotive supplier in triple ransomware attack

August 10, 2022 0 Comments active adversary playbook, blackcat, featured, hive, lockbit, Ransomware, security operations, sophos x-ops

Credit to Author: Matt Wixey| Date: Wed, 10 Aug 2022 11:00:50 +0000

After gaining access via RDP, all three threat actors encrypted files, in an investigation complicated by event log clearing and backups. 3 attackers, 2 weeks – 1 entry point.

Security Sophos

Multiple attackers increase pressure on victims, complicate incident response

August 9, 2022 0 Comments active adversary playbook, blackcat, conti, cryptominers, featured, hive, iabs, karakurt, lockbit, Ransomware, security operations, sophos x-ops, threat research

Credit to Author: Matt Wixey| Date: Tue, 09 Aug 2022 11:00:04 +0000

Sophos’ latest Active Adversary report explores the issue of organizations being hit multiple times by attackers

Security Sophos

Behind the Research: The Making of “OODA: X-Ops Takes on Burgeoning SQL Server Attacks”

July 20, 2022 0 Comments behind the research, security operations, sophos x-ops, threat research

Credit to Author: Christopher Budd| Date: Wed, 20 Jul 2022 11:00:25 +0000

Today, we released new Sophos research into a series of Microsoft SQL Server attacks. We also released a new piece outlining our vision of how security operations can and will be enhanced and improved by machine learning and artificial intelligence: “Building the AI-Driven SOC: Sophos’ 5-Year Perspective.” Finally, today we announced the launch of Sophos […]

Security Sophos