Content added to Folio

Research, News, and Perspectives

Add Filters
Filter by:
Threats
Environments
Article Type
Medium
Expanding Attack Blueprints: 2022 Annual Cybersecurity Report
Cyber Threats

Expanding Attack Blueprints: 2022 Annual Cybersecurity Report

In this blog entry, we shine a spotlight on some of the most critical cybersecurity concerns of 2022, which we discuss in full in our annual cybersecurity report, “Rethinking Tactics: 2022 Annual Security Report.”

March 07, 2023

Trending Topics

Privacy & Risks

In Review: What GPT-3 Taught ChatGPT in a Year

Malware

Enigma Stealer Targets Cryptocurrency Industry with Fake Jobs

APT & Targeted Attacks

Earth Kitsune Delivers New WhiskerSpy Backdoor via Watering Hole Attack

Ransomware

Royal Ransomware Expands Attacks by Targeting Linux ESXi Servers

Malware

New OpcJacker Malware Distributed via Fake VPN Malvertising

We discovered a new malware, which we named “OpcJacker” (due to its opcode configuration design and its cryptocurrency hijacking ability), that has been distributed in the wild since the second half of 2022.

Research Mar 29, 2023

Save to Folio

Research Mar 29, 2023

Save to Folio

APT & Targeted Attacks

Earth Preta’s Cyberespionage Campaign Hits Over 200

We present a case study of the cyberespionage efforts by Earth Preta. This study on an active campaign delves into the structure, goals, and requirements of the organizations involved, and provides an opportunity to conduct wider intelligence analysis and insights in the development of effective countermeasures.

Mar 27, 2023

Save to Folio

Mar 27, 2023

Save to Folio

APT & Targeted Attacks

Pack it Secretly: Earth Preta’s Updated Stealthy Strategies

Earth Preta has actively been changing its tools, tactics, and procedures (TTPs) to bypass security solutions. In this blog entry, we will introduce and analyze the tools and malware used by the threat actor in its most recent campaigns.

Research Mar 23, 2023

Save to Folio

Research Mar 23, 2023

Save to Folio

Exploits & Vulnerabilities

Patch CVE-2023-23397 Immediately: What You Need To Know and Do

We break down the basic information of CVE-2023-23397, the zero-day, zero-touch vulnerability that was rated 9.8 on the Common Vulnerability Scoring System (CVSS) scale.

Mar 21, 2023

Save to Folio

Mar 21, 2023

Save to Folio

Cyber Threats

S4x23 Review Part 3: Healthcare Cybersecurity Sessions

This article focuses on the healthcare sector. Over the past two years, the healthcare sector has been in a constant state of emergency due to the COVID-19 pandemic, and as widely reported in the media, it has also been threatened by cyberattacks such as ransomware.

Security Strategies Mar 20, 2023

Save to Folio

Security Strategies Mar 20, 2023

Save to Folio

Compliance & Risks

S4x23 Review Part 2: Evolving Energy Cybersecurity

In this second report on S4x23 held last February, this article introduces the discussion on cyber security in the energy industry, which was one of the topics that attracted attention.

Security Strategies Mar 13, 2023

Save to Folio

Security Strategies Mar 13, 2023

Save to Folio

Malware

Emotet Returns, Now Adopts Binary Padding for Evasion

Following a three-month hiatus, Emotet spam activities resumed in March 2023, when a botnet known as Epoch 4 began delivering malicious documents embedded in Zip files that were attached to the emails.

Research Mar 13, 2023

Save to Folio

Research Mar 13, 2023

Save to Folio

Ransomware

Examining Ransomware Payments From a Data-Science Lens

In this entry, we discuss case studies that demonstrated how data-science techniques were applied in our investigation of ransomware groups' ransom transactions, as detailed in our joint research with Waratah Analytics, “What Decision-Makers Need to Know About Ransomware Risk.”

Research Mar 09, 2023

Save to Folio

Research Mar 09, 2023

Save to Folio