threat research – Page 7 – PossibleThreat Articles

Credit to Author: Jörg Schindler| Date: Tue, 23 Apr 2024 08:34:01 +0000

Sophos veröffentlicht einen neuen Mehr dazu im Sophos Report Report mit dem Titel ‘Junk Gun‘ Ransomware: Peashooters can still pack a punch. Der Titel erinnert an eine Ära in den USA in den 60er und 70er-Jahren, als mit billigen und teils schlecht funktionieren Waffen, später „Junk Guns“ genannt, der Markt überschwemmt wurde – eine Entwicklung, […]

Security Sophos

Phishing, BEC attackers target candidates in local election, among others

June 14, 2024 0 Comments election, email, featured, fraud, phishing, sophos x-ops, Spam, threat research

Credit to Author: Andrew Brandt| Date: Thu, 13 Jun 2024 10:02:56 +0000

An escalating series of email-borne attacks were sent to candidates, including the author

Security Sophos

RD Web Access abuse: Fighting back

June 14, 2024 0 Comments active adversary, active adversary report, featured, Incident Response, RDP, security operations, sophos x-ops, threat research

Credit to Author: Angela Gunn| Date: Wed, 12 Jun 2024 18:59:54 +0000

Investigation insights and recommendations from a recent welter of incident-response cases

Security Sophos

June Patch Tuesday squares up with 49 patches

June 11, 2024 0 Comments cve-2024-30080, cve-2024-37325, cve-2024-50868, featured, Patch Tuesday, sophos x-ops, threat research, Windows

Credit to Author: Angela Gunn| Date: Wed, 12 Jun 2024 01:21:01 +0000

Just one critical-severity issue addressed, but don’t sleep on an industry-wide DNS issue

Security Sophos

Operation Crimson Palace: A Technical Deep Dive

June 5, 2024 0 Comments security operations, threat research

Credit to Author: gallagherseanm| Date: Wed, 05 Jun 2024 10:00:46 +0000

Sophos Managed Detection and Response initiated a threat hunt across all customers after the detection of abuse of a vulnerable legitimate VMware executable (vmnat.exe) to perform dynamic link library (DLL) side-loading on one customer’s network. In a search for similar incidents in telemetry, MDR ultimately uncovered a complex, persistent cyberespionage campaign targeting a high-profile government […]

Security Sophos