35 matches found
SAS 2021: FinSpy Surveillance Kit Re-Emerges Stronger Than Ever
The FinSpy surveillance kit has been driven from its hiding place following an eight-month investigation by Kaspersky researchers. Detections of the spyware trojan have dwindled since 2018, but it turns out that it hasn’t gone away – it’s simply been hiding behind various first-stage implants tha...
SAS 2019: Fake News Peddlers Adopt Clever New Trick to Fool Facebook, Twitter
Fake news peddlers have devised a cunning new way to stump Facebook, Twitter and others cracking down on lies and half-truths spreading on social media. Instead of linking to fake news, bad actors are now linking to posts promoting older news articles that may no longer be accurate – but won’t be...
SAS 2019 to Tackle APTs, Supply Chains and More
Kaspersky Lab’s Security Analyst Summit kicks off in Singapore next week, where elite researchers, top cybersecurity firms and global law-enforcement agencies will discuss today’s biggest cybersecurity threats and how best to squash them. This year marks the first time the global security...
The ‘Perfect Storm’ of Disinformation and Hacking
We live in an age of fake news, misinformation and disinformation. Recently, we have been falling for it – mostly. That is largely thanks to a confluence of social media, hacking and good old fashion disinformation campaigns, according to Matt “Pwn all the Things” Tait, a senior cybersecurity...
FireEye’s Marina Krotofil On Triton and ICS Threats
At the Security Analyst Summit this year in Cancun, FireEye’s Marina Krotofil talks about the Triton malware, first disclosed in December 2017, that targets industrial control systems. Krotofil discusses with Threatpost’s Lindsey O’Donnell about the implications of this malware for the...
Vulnerability in Robots Can Lead To Costly Ransomware Attacks
CANCUN, Mexico – A vulnerability in Softbank Robotics’ NAO and Pepper robots can lead to costly ransomware attacks that could cause robots deployed in businesses to stop working, curse at customers, or even perform violent movements. The vulnerability was disclosed at Kaspersky Lab’s Security...
IT threat evolution Q2 2017
Targeted attacks and malware campaigns Back to the future: looking for a link between old and new APTs This year's Security Analyst Summit SAS included interesting research findings on several targeted attack campaigns. For example, researchers from Kaspersky Lab and King's College London present...
Mark Dowd on Exploit Mitigation Development
Mark Dowd, fresh off his 2017 Security Analyst Summit keynote, discusses why certain exploit mitigations have been so successful in driving up the cost of exploit development for attackers...
On Baseband Vulnerabilities, SIEMs, Samsung Tizen and More
Mike Mimoso, Tom Spring, and Chris Brook recap two conferences from last week: Infiltrate Con in Miami and Kaspersky Lab’s Security Analyst Summit in St. Maarten. A baseband vulnerability, SIEMs, vulnerabilities in Samsung’s Tizen operating system, and an IoT honeypot are discussed. Download:...
Travel Routers, NAS Devices Among Easily Hacked IoT Devices
SINT MAARTEN—A researcher only needed 20 minutes last week to explain just how hopelessly broken some of the more popular Internet of Things devices on the market these days are. Jan Hoersch, an IT security consultant at Securai GmbH, a small pen-testing firm based in Munich, described...
Security Analyst Summit 2017 Day Two Recap
SINT MAARTEN—Mike Mimoso and Chris Brook recap the second day of Kaspersky Lab’s Security Analyst Summit, including how a Brazilian bank was compromised, a talk by Swisscom’s Markus Neis, and David Jacoby and Frans Rosen’s Hacking for Humanity talk. Download:...
Security Analyst Summit 2017 Day One Recap
SINT MAARTEN—Mike Mimoso and Chris Brook recap the first day of this year’s Security Analyst Summit, including Mark Dowd’s memory corruption bug keynote, Thomas Rid, Daniel Moore, Juan Andres Guerrero-Saade, and Costin Raiu’s Moonlight Maze talk, ATM hacking, and the Lazarus APT. Download:...
On SAS 2017, the Microsoft IIS Zero Day, and Mirai
Mike Mimoso and Chris Brook preview this year’s Security Analyst Summit and discuss the news of the week, including a Microsoft IIS zero day, a new Mirai variant, and the broadband privacy ruling. Download: ThreatpostNewsWrapMarch312017.mp3 Music by Chris Gonsalves...
A Backdoor in Socat? Going Dark, IoT, and Previewing SAS 2016
Mike Mimoso and Chris Brook discuss the news of the week, including internet-connected teddy bears, the latest on the Going Dark debate, and whether or not there’s a backdoor in Socat. They also preview next week’s Security Analyst Summit in Tenerife, Spain. Download:...
New Analytics Tool Defines Language Used Malicious Domains
OpenDNS has gone public with a new tool that uses a blend of analytics principles found outside information security to create a threat model for detecting domains used in criminal and state-sponsored hacking campaigns. NLPRank is not ready for production, said OpenDNS director of security resear...
Kris McConkey on OpSec Failures
At last week’s Security Analyst Summit Kris McConkey, part of PricewaterhouseCoopers’ UK Cyber Threat Operations team, discusses hacker OpSec failures: How attackers are still humans and sometimes make mistakes like using personal email addresses and real names in their campaigns...
Katie Moussouris on Starting a Bug Bounty Program
At last week’s Security Analyst Summit, HackerOne’s Katie Moussouris explains one of the key things that companies that want to start a bounty or vulnerability incentive program should know: There is no one size fits all...
Trey Ford on Mapping the Internet with Project Sonar
Trey Ford from Project Sonar describes the group’s initiative at Kaspersky’s Security Analyst Summit. The Rapid7 service scans public networks for applications, software, and hardware, then analyzes that cache of information to learn trends and gain insight on common vulnerabilities. Trey Ford...
Christofer Hoff on Mixed Martial Arts, Active Defense, and Security
CANCUN–In his keynote talk at the Kaspersky Security Analyst Summit Monday Christofer Hoff, the vice president and CTO of the security business at Juniper Networks stressed that in security and martial arts alike, it’s hard to be a skilled defender if you don’t understand how your adversaries pul...
Massive, Decades-Long Cyberespionage Framework Uncovered
CANCUN–Researchers at Kaspersky Lab have uncovered a cyberespionage group that has been operating for at least 15 years and has worked with and supported the attackers behind Stuxnet, Flame and other highly sophisticated operations. The attackers, known as the Equation Group, used two of the zero...