threat research – Page 4 – PossibleThreat Articles

Ransomware attackers introduce new EDR killer to their arsenal

August 14, 2024 0 Comments byovd, EDR, edr killer, featured, Ransomware, security news, threat research

Credit to Author: Andrew Brandt| Date: Wed, 14 Aug 2024 16:00:19 +0000

Sophos discovers the threat actors behind RansomHub ransomware using EDRKillShifter in attacks

Don’t get Mad, get wise

August 13, 2024 0 Comments anydesk, featured, Incident Response, mad liberator, malware, security operations, Social engineering, threat research

Credit to Author: Angela Gunn| Date: Tue, 13 Aug 2024 09:59:22 +0000

The “Mad Liberator” ransomware group leverages social-engineering moves to watch out for

Security Sophos

The cybersecurity kids aren’t all right

August 12, 2024 0 Comments asia, burnout, fatigue, featured, survey, threat research

Credit to Author: Angela Gunn| Date: Mon, 12 Aug 2024 22:05:32 +0000

A new Sophos-commissioned survey finds burnout, fatigue, cynicism riding high in the workforce

Security Sophos

Best security practices for ESXi environments

August 7, 2024 0 Comments EDR, esxi, featured, mdr, remediations, security operations, threat research, virtualization, vmware

Credit to Author: Angela Gunn| Date: Wed, 07 Aug 2024 09:52:08 +0000

Ten recommendations for defenders when natively run EDR isn’t an option

Security Sophos

Turning the screws: The pressure tactics of ransomware gangs

August 6, 2024 0 Comments 8base, blackcat, blacksuit, cactus, cybercrime forums, featured, karakurt, malas, marketplaces, media, monti, play, pressure, qiulong, Ransomware, snatch, sophos x-ops, space bears, threat research, werewolves

Credit to Author: Matt Wixey| Date: Tue, 06 Aug 2024 10:00:49 +0000

Sophos X-Ops examines the increasingly aggressive tactics ransomware gangs use to coerce their targets

Security Sophos

Driving lessons: The kernel drivers in Sophos Intercept X Advanced

August 1, 2024 0 Comments cryptoguard, drivers, Intercept X Advanced, kernel, sophos x-ops, threat research

Credit to Author: Matt Wixey| Date: Thu, 01 Aug 2024 09:42:02 +0000

Operating in kernel-space is necessary, but risky – here’s how we do it in Sophos Intercept X Advanced

Security Sophos

July Patch Tuesday Unleashes a Torrent of Updates

July 9, 2024 0 Comments Azure, Database, dynamics365, eop, Microsoft, microsoft sql server, ms-sql, office365, Patch Tuesday, people rating, rce, sophos x-ops, sql server, threat research, Windows

Credit to Author: Andrew Brandt| Date: Tue, 09 Jul 2024 18:05:32 +0000

Microsoft fixes 138 bugs in Windows and other products this month

Security Sophos

Wenn das Backup beim Ransomware-Angriff zum Problem wird

July 1, 2024 0 Comments backup, featured, Ransomware, threat research

Credit to Author: Jörg Schindler| Date: Thu, 20 Jun 2024 12:55:16 +0000

Die finanziellen und betrieblichen Auswirkungen eines Ransomware-Angriffs sind schon schlimm genug. Wenn es den Cyberkriminellen allerdings zusätzlich gelingt, die Backups zu schädigen oder zu verschlüsseln, ist die Wahrscheinlichkeit hoch, dass ein Unternehmen rund das doppelte an Lösegeld zahlen muss. Laut einer Studie von Sophos bei 2.974 IT-/Cybersecurity-Entscheidern in 14 Ländern fallen die Gesamtkosten für die […]

Security Sophos

6 Methoden zur Rettung von verschlüsselten, virtuellen Festplatten

July 1, 2024 0 Comments data encryption, featured, threat research

Credit to Author: Jörg Schindler| Date: Tue, 18 Jun 2024 09:13:29 +0000

Im Falle einer Datenverschlüsselung durch Ransomware müssen „Incident Responder“ und Task-Forces schnell und effizient vorgehen, um möglichst alle Daten beispielsweise von einer verschlüsselten virtuellen Maschine zu extrahieren. Wie wichtig das Fachwissen und die richtige Vorgehensweise sind, unterstreicht einmal mehr der aktuelle Sophos-Report State of Ransomware 2024: 58 Prozent der deutschen Unternehmen waren im letzten Jahr […]