Lucene search
K

9 matches found

Trend Micro Simply Security
Trend Micro Simply Security
added 2025/03/18 12:0 a.m.31 views

ZDI-CAN-25373: Windows Shortcut Exploit Abused as Zero-Day in Widespread APT Campaigns

Trend Zero Day Initiative™ ZDI uncovered both state-sponsored and cybercriminal groups extensively exploiting ZDI-CAN-25373 aka ZDI-25-148, a Windows .lnk file vulnerability that enables hidden command execution...

7.6AI score
Exploits0
ThreatPost
ThreatPost
added 2019/04/16 4:13 p.m.1169 views

Windows Zero-Day Emerges in Active Exploits

A just-patched vulnerability in the Windows operating system that was previously unknown up until last week is being actively exploited in the wild; it opens the door for full system takeover. Discovered by Vasily Berdnikov and Boris Larin of Kaspersky Lab on St. Patrick’s Day this year, the flaw...

7.2CVSS0.3AI score0.69833EPSS
Exploits11References10
Talos Blog
Talos Blog
added 2019/02/06 8:19 a.m.1500 views

2018 in Snort Rules

This blog post was authored by Benny Ketelslegers of Cisco Talos The cybersecurity field shifted quite a bit in 2018. With the boom of cryptocurrency, we saw a transition from ransomware to cryptocurrency miners. Talos researchers identified APT campaigns including VPNFilter, predominantly...

10CVSS9.6AI score0.99999EPSS
Exploits68
Securelist
Securelist
added 2018/03/28 10:0 a.m.28 views

Your new friend, KLara

While doing threat research, teams need a lot of tools and systems to aid their hunting efforts – from systems storing Passive DNS data and automated malware classification to systems allowing researchers to pattern-match a large volume of data in a relatively short period of time. These tools ar...

6.9AI score
Exploits0
ThreatPost
ThreatPost
added 2016/10/07 11:0 a.m.17 views

The Ethics and Morality Behind APT Reports

DENVER—Investigations into state-sponsored APT campaigns are much more than black-and-white research into malware, exploits and zero-days. Behind the scenes, these can be geopolitical powder kegs that require moral examinations into the ethics of publishing public reports that could expose tools...

7AI score
Exploits0References2
ThreatPost
ThreatPost
added 2016/05/25 2:58 p.m.81 views

Wekby APT Gang Seen Using DNS Tunneling for Command and Control

Palo Alto Networks is reporting a shift in malware tactics used by the APT group Wekby that has added a rare but effective new tool to its bag of tricks. The security firm reported on Tuesday that over the past week, Wekby attackers are turning to the technique known as DNS tunneling in lieu of...

10CVSS9.9AI score0.99344EPSS
Exploits6References6
ThreatPost
ThreatPost
added 2015/03/05 1:56 p.m.9 views

New Analytics Tool Defines Language Used Malicious Domains

OpenDNS has gone public with a new tool that uses a blend of analytics principles found outside information security to create a threat model for detecting domains used in criminal and state-sponsored hacking campaigns. NLPRank is not ready for production, said OpenDNS director of security resear...

7.2AI score
Exploits0References3
ThreatPost
ThreatPost
added 2014/06/17 12:1 p.m.14 views

Asprox Malware Borrowing Stealth from APT Campaigns

Cybercriminals and advanced attackers are freely borrowing from one another’s repertoires to great success. The latest example involves spammers firing off up to a half-million email messages during limited campaign segments without triggering any detection alarms. Security company FireEye said t...

1.4AI score
Exploits0References2
ThreatPost
ThreatPost
added 2014/04/30 3:11 p.m.13 views

UltraDNS Dealing with DDoS Attack

UPDATE – UltraDNS said it has mitigated a distributed denial of service DDoS attack for most of its customers after the service was held down for most of the day. “Currently, only customers utilizing a segment of UltraDNS Name Server addresses are experiencing resolution latency due to intermitte...

Exploits0References2
Rows per page
Query Builder