September 2023

,

DHS probes potential impact from Johnson Controls ransomware attack

CNN reports that a potential compromise of the Department of Homeland Security's sensitive physical security details is being looked int...

Sp123 30 Sept, 2023
,

Asian government, telco targeted by Chinese APT

New attacks with the updated SysUpdate toolkit have been deployed by Chinese advanced persistent threat operation Budworm, also known as APT...

Sp123 30 Sept, 2023
,

Update: hash.py Version 0.0.10

This new versions adds 2 new features: Option -H adds a human hash for each hash: Option -r renames a file to its hash (hash) or to its ...

Sp123 30 Sept, 2023
,

Update: emldump.py Version 0.0.13

This new update can produce JSON output for each part (option–jsonoutput). emldump_V0_0_13.zip ( http ) MD5: 083C21C2E7EA265947E3D2060A73...

Sp123 30 Sept, 2023
,

Update: file-magic.py Version 0.0.7

This update is just a definition update to detect MSO (ActiveMime files). file-magic_V0_0_7.zip ( http ) MD5: 6EFF124D3D0854F62034E05DAE2...

Sp123 30 Sept, 2023
,

Simple Netcat Backdoor in Python Script, (Sat, Sep 30th)

Why reinvent the wheel? We are all lazy and, if we have a tool that offers some interesting capabilities, why not use it? I spotted a simple...

Sp123 30 Sept, 2023
,

Future of policing main focus as police chiefs meet at Europol

Co-hosted by Europol and the Spanish Presidency of the Council of the EU, the two-day conference (26-27 September) brought together 385 high...

Sp123 29 Sept, 2023
,

‘Nightmangle’ Telegram C2 Agent and New FUD Crypter with Windows Defender Bypass

Hackers favor Telegram as a platform for a wide range of activities, such as communication, announcements, advertisements, and even recruit...

Sp123 29 Sept, 2023
,

Building edge computing for manufacturing - the video

Enjoy this video of Chuck Harold interviewing Theresa Lanowitz, Head of Cybersecurity Evangelism at AT&T Business. It's lighthearted...

Sp123 29 Sept, 2023
,

Are You Still Storing Passwords In Plain Text Files?, (Fri, Sep 29th)

“Infostealer” malware have been in the wild for a long time now. Once the computer’s victim is infected, the goal is to steal “juicy” inform...

Sp123 29 Sept, 2023
,

Machine Learning in Cybersecurity: Clustering for Threat Detection

Author Credits: Alvin Wen, Software Architect, and Craig Chamberlain , Director of Algorithmic Threat Detection   Many modern standards, ...

Sp123 28 Sept, 2023
,

Robots: Cybercriminals of the Future?

Artificial intelligence and adjacent technologies have been causing quite the stir lately. Many are concerned that AI is going to give rise ...

Sp123 28 Sept, 2023
,

Budworm: APT Group Uses Updated Custom Tool in Attacks on Government and Telecoms Org

Previously unseen version of SysUpdate used in August 2023 campaign. Article Link: Budworm: APT Group Uses Updated Custom Tool in Attacks o...

Sp123 28 Sept, 2023
,

MMRat: A new banking trojan

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or inf...

Sp123 28 Sept, 2023
,

Why You Still Need On-Prem Backup in The Cloud Era

<div> <div> ...

Sp123 28 Sept, 2023
,

A cryptor, a stealer and a banking trojan

Introduction As long as cybercriminals want to make money, they’ll keep making malware, and as long as they keep making malware, we’ll kee...

Sp123 28 Sept, 2023
,

How do you spook cyber criminals?

Tips to avoid being scared to death by cyber criminals this spooky season The spooky season is in full swing – the summer is over, and the...

Sp123 27 Sept, 2023
,

EPSS vs. CVSS: Exploit prediction could change the game on software risk management

Security teams are faced with more alerts than they can handle. SecurityScorecard and the Cyentia Institute estimate that organizations fix...

Sp123 26 Sept, 2023
,

Threat Actors Actively Using Remote Management Tools to Deploy Ransomware

The threat actors have been spotted increasingly depending on Remote Management and Monitoring (RMM) tools, which resulted in a relatively b...

Sp123 26 Sept, 2023
,

TSUBAME Report Overflow (Apr-Jun 2023)

This TSUBAME Report Overflow series discuss monitoring trends of overseas TSUBAME sensors and other activities which the Internet Threat Mon...

Sp123 26 Sept, 2023
,

Xenomorph is Back: New Campaigns Targeting Spain & USA

A New Xenomorph Campaign Anyone familiar with the famous movie "Alien", directed by Ridley Scott in 1979, is well aware of how ...

Sp123 25 Sept, 2023
,

Sophos Named a Customers’ Choice in the Gartner® Peer Insights™ Voice of the Customer report for Endpoint Protection Platforms

Customers have recognized Sophos for the second consecutive year. Article Link: Sophos Named a Customers’ Choice in the Gartner® Peer Insig...

Sp123 25 Sept, 2023