Content added to Folio

Research, News, and Perspectives

Add Filters
Filter by:
Threats
Environments
Article Type
Medium
TeamTNT Campaigns Emphasize Importance of Addressing Cloud Security Gaps
Cloud

TeamTNT Campaigns Emphasize Importance of Addressing Cloud Security Gaps

Having covered TeamTNT in several of our blog entries over the past couple of years, we embarked on a research that encompasses the malicious actor group’s campaigns, tools, and techniques in 2020 and early 2021.

July 20, 2021

Trending Topics

APT & Targeted Attacks

BIOPASS RAT: New Malware Sniffs Victims via Live Streaming

Exploits & Vulnerabilities

The Underground Exploit Market and the Importance of Virtual Patching

Phishing

Reduce Instances of Covid-19 Phishing Email Attacks

Archives

Cloud

Threat Actors Exploit Misconfigured Apache Hadoop YARN

We look into how threat actors are exploiting Apache Hadoop YARN, a part of the Hadoop framework that is responsible for executing tasks on the cluster. This analysis covers the payloads deployed, the tactics used in the attacks, and basic recommendations for strengthening cloud security.

Research Jul 27, 2021

Save to Folio

Research Jul 27, 2021

Save to Folio

Cyber Threats

#LetsTalkSecurity: The New Digital Normal

Let's Talk Security: Season 02 // Episode 03: Host, Rik Ferguson, interviews Founder & CEO of MyConnectedHealth, Tyler Cohen Wood. Together they discuss the new digital normal.

#LetsTalk Series Jul 26, 2021

Save to Folio

#LetsTalk Series Jul 26, 2021

Save to Folio

Cyber Threats

5GAA & Global Certification Forum Connect on New Cert.

The Global Certification Forum (GCF) and the 5G Automotive Association (5GAA) announced their collaboration on a new program that will support the drive for interoperability, reliability, and safety of up and coming C-V2X systems.

Latest News Jul 26, 2021

Save to Folio

Latest News Jul 26, 2021

Save to Folio

Cyber Threats

This Week in Security News - July 23, 2021

StrongPity APT Group Deploys Android Malware for the First Time and STIX Cyberthreat Sharing Standards Approved

Expert Perspective Jul 23, 2021

Save to Folio

Expert Perspective Jul 23, 2021

Save to Folio

Malware

Updated XCSSET Malware Targets Telegram, Other Apps

In our last update on the XCSSET campaign, we updated some of its features targeting latest macOS 11 (Big Sur). Since then, the campaign added more features to its toolset, which we have continually monitored. We have also discovered the mechanism used to steal information from various apps, a behavior that has been present since we first discussed XCSSET.

Latest News Jul 22, 2021

Save to Folio

Latest News Jul 22, 2021

Save to Folio

Respect in Security: Anti-Harrassment Initiative

Respect in Security aims to make a concrete difference to the levels of abuse and harassment that are unfortunately all too common in our industry.

Expert Perspective Jul 22, 2021

Save to Folio

Expert Perspective Jul 22, 2021

Save to Folio

Phishing

Reduce Instances of Covid-19 Phishing Email Attacks

The Covid-19 pandemic has created an unlimited supply of news and topics for cybercriminals to utilize in their attacks, as well as major organizations to spoof. Learn what your organization can do to combat these timely threats.

Expert Perspective Jul 21, 2021

Save to Folio

Expert Perspective Jul 21, 2021

Save to Folio

APT & Targeted Attacks

StrongPity APT Group Deploys Android Malware for the First Time

We recently conducted an investigation into a malicious Android malware sample, which we believe can be attributed to the StrongPity APT group, that was posted on the Syrian e-Gov website. To the best of our knowledge, this is the first time that the group has been publicly observed using malicious Android applications as part of its attacks.

Research Jul 21, 2021

Save to Folio

Research Jul 21, 2021

Save to Folio