Lucene search
K

29 matches found

Packet Storm News
Packet Storm News
added 2026/05/15 12:0 a.m.9 views

STRIKE: A Structured Taxonomy of Cybercrime for Risk, Impact, Knowledge, and Evolution

Cybercrime has grown exponentially in both scale and sophistication, posing significant threats. As attack methods evolve rapidly, traditional classification schemes often fail to capture the complexity and diversity of modern threats. To address this gap, we introduce STRIKE,a Structured Taxonom...

5.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/01/17 12:0 a.m.4 views

Hybrid IDS Using Signature-Based and Anomaly-Based Detection

Intrusion detection systems IDS are essential for protecting computer systems and networks against a wide range of cyber threats that continue to evolve over time. IDS are commonly categorized into two main types, each with its own strengths and limitations, such as difficulty in detecting...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/23 12:0 a.m.3 views

Enhancing Security in LLM Applications: a Performance Evaluation of Early Detection Systems

Prompt injection threatens novel applications that emerge from adapting LLMs for various user tasks. The newly developed LLM-based software applications become more ubiquitous and diverse. However, the threat of prompt injection attacks undermines the security of these systems as the mitigation a...

7.2AI score
Exploits0
Securelist
Securelist
added 2025/04/07 10:0 a.m.24 views

How ToddyCat tried to hide behind AV software

To hide their activity in infected systems, APT groups resort to various techniques to bypass defenses. Most of these techniques are well known and detectable by both EPP solutions and EDR threat-monitoring and response tools. For example, to hide their activity in Windows systems, cybercriminals...

8.4CVSS8.2AI score0.01802EPSS
Exploits0
GithubExploit
GithubExploit
added 2025/03/31 9:6 a.m.374 views

Exploit for Improper Input Validation in Microsoft

PoC exploit for CVE-2023-21554, a vulnerability in MSMQ. The tar...

9.8CVSS9.8AI score0.95454EPSS
Exploits7
Wiz blog
Wiz blog
added 2025/01/15 9:56 a.m.6 views

Tracking cloud-fluent threat actors - Part two: Behavioral cloud IOCs

Discover how behavioral cloud IOCs can expose malicious activity as we break down real-world examples to reveal actionable detection techniques...

7.2AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2023/12/12 6:0 p.m.29 views

Threat actors misuse OAuth applications to automate financially driven attacks

Threat actors are misusing OAuth applications as an automation tool in financially motivated attacks. OAuth is an open standard for token-based authentication and authorization that enables applications to get access to data and resources based on permissions set by a user. Threat actors compromi...

7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2023/07/11 1:15 p.m.29 views

The Battle Against Business Logic Attacks: Why Traditional Security Tools Fall Short

As the digital landscape continues to evolve, so do the tactics utilized by bad actors that are seeking to exploit application vulnerabilities. Among the most insidious types of attacks are business logic attacks BLAs. Unlike known attacks, which can be identified by signatures or patterns, such ...

8.5AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/06/22 8:0 a.m.26 views

Malwarebytes only vendor to win every MRG Effitas award in 2022 & 2023

MRG Effitas, a world leader in independent IT research, published their anti-malware efficacy assessment results for Q1 2023. Malwarebytes Endpoint Protection EP achieved the highest possible score 100% and received certifications for Level 1, Exploit, Online Banking, and Ransomware. These result...

6.7AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2022/12/12 5:0 p.m.29 views

IIS modules: The evolution of web shells and how to detect them

Web exploitation and web shells are some of the most common entry points in the current threat landscape. Web servers provide an external avenue directly into your corporate network, which often results in web servers being an initial intrusion vector or mechanism of persistence. Monitoring for...

Exploits0
Securelist
Securelist
added 2022/12/02 8:0 a.m.25 views

Indicators of compromise (IOCs): how we collect and use them

It would hardly be an exaggeration to say that the phrase "indicators of compromise" or IOCs can be found in every report published on the Securelist. Usually after the phrase there are MD5 hashes1, IP addresses and other technical data that should help information security specialists to counter...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/10/12 4:15 p.m.22 views

Top 5 ransomware detection techniques: Pros and cons of each

In the fight against ransomware, much of the discussion revolves around prevention and response. Actually detecting the ransomware, however, is just as important to securing your business. To understand why, just consider the following example. Lets say youre a farmer taking care of a flock of...

7AI score
Exploits0
Trellix
Trellix
added 2021/09/22 12:0 a.m.18 views

BlackMatter Ransomware Analysis; The Dark Side Returns

ARCHIVED STORY BlackMatter Ransomware Analysis; The Dark Side Returns By Alexandre Mundo and Marc Elias · September 22, 2021 BlackMatter is a new ransomware threat discovered at the end of July 2021. This malware started with a strong group of attacks and some advertising from its developers that...

7AI score
Exploits0
Akamai Blog
Akamai Blog
added 2021/03/21 6:40 p.m.12 views

4 Techniques for Early Ransomware Detection

If you receive a ransom note, it’s already too late. Detect and stop ransomware attacks early in the kill chain with these 4 techniques...

7AI score
Exploits0
Securelist
Securelist
added 2020/12/03 10:0 a.m.93 views

What did DeathStalker hide between two ferns?

DeathStalker is a threat actor thats been active since at least 2012, and we exposed most of their past activities in a previous article, as well as during a GREAT Ideas conference in August 2020. The actor drew our attention in 2018 because of distinctive attack characteristics that didnt fit in...

0.3AI score
Exploits0
ThreatPost
ThreatPost
added 2020/11/30 5:52 p.m.125 views

MacOS Users Targeted By OceanLotus Backdoor

A macOS backdoor variant has been uncovered that relies of multi-stage payloads and various updated anti-detection techniques. Researchers linked it to the OceanLotus advanced persistent threat APT group. The Vietnam-backed OceanLotus also known as APT 32 has been around since at least 2013, and...

0.2AI score
Exploits0References9
ThreatPost
ThreatPost
added 2020/11/03 9:39 p.m.999 views

Oracle Solaris Zero-Day Attack Revealed

A previously known threat group, called UNC1945, has been compromising telecommunications companies and targeting financial and professional consulting industries, by exploiting a security flaw in Oracle’s Solaris operating system. Researchers said that the group was exploiting the bug when it wa...

10CVSS0.7AI score0.99999EPSS
Exploits145References12
The Hacker News
The Hacker News
added 2020/09/29 5:26 p.m.11 views

LIVE Webinar on Zerologon Vulnerability: Technical Analysis and Detection

I am sure that many of you have by now heard of a recently disclosed critical Windows server vulnerability—called Zerologon—that could let hackers completely take over enterprise networks. For those unaware, in brief, all supported versions of the Windows Server operating systems are vulnerable t...

10CVSS7.1AI score0.99512EPSS
Exploits75
CISA
CISA
added 2020/08/13 12:0 a.m.12 views

Joint NSA and FBI Cybersecurity Advisory Discloses Russian Malware Drovorub

The National Security Agency NSA and the Federal Bureau of Investigation FBI have released a cybersecurity advisory introducing previously undisclosed Russian malware. NSA and the FBI attributed the malware, dubbed Drovorub, to Russian advanced persistent threat APT actors. The Cybersecurity and...

6.8AI score
Exploits0References1
ThreatPost
ThreatPost
added 2020/01/07 2:27 p.m.77 views

Facebook Cracks Down on Deepfake Videos

Facebook is banning deepfake videos, which stem from a technique of human-image synthesis based on artificial intelligence AI to create fake content. Over the past year, security experts and lawmakers have voiced concerns about malicious deepfake applications, particularly as a vessel for...

7.3AI score
Exploits0References7
Rows per page
Query Builder