Ken's Automated News Feed Aggregator
Attackers always seek out new ways to evade detection. As most endpoint security products handle file-based attacks relatively well, scripts are an excellent way for attackers to avoid making changes to a disk, thus bypassing the threat detection capab…
Continue ReadingMicrosoft Office is one of the most common attack vectors used by malicious actors to spread their malware. Considering that most computers have Microsoft Office installed and Office files are commonly shared between organizations and individuals – the…
Continue ReadingIt was in roughly the fifth century BC when Chinese general Sun Tzu wrote in his work The Art of War : “If you know the enemy and know yourself, you need not fear the result of a hundred battles. If you know yourself but not the enemy, for every victor…
Continue Readingvia infosecurity-magazine.com Millions of Logins from UK Ticket Site for Sale on Dark WebSecurity researchers have discovered a database containing millions of emails and usernames up for sale on the dark web, linked to a well-known UK ticketing provid…
Continue ReadingMagnitude Exploit KIT : An opportunistic Malvertiser, mostly targeting south Korea. Magnitude EK has been there since 2013, and known to drop very known ransomware families including: Locky, Cerber, Magniber, CryptoWall, GranCrab.. Known to rapidly int…
Continue ReadingUsually, the goal is to collect intelligence data, intellectual property or government secrets from the target, whether it’s valued for securing competitive advantage, enhancing the state’s security, and/or gaining military power over the other country…
Continue Readingvia theguardian.com Security committee of MPs with authority to publish document now set up after long delayThe long-delayed report into Russian infiltration in the UK could be published next week now that parliament’s intelligence and security committ…
Continue ReadingExploit availability: No Description. CWE-310 – Cryptographic Issues The vulnerability allows a remote attacker to recover the secret primes. During RSA key generation, bignum implementations used a variation of the Binary Extended Euclidean Algorithm …
Continue Readingvia infosecurity-magazine.com Bitcoin Thieves Hit CashaaCyber-criminals have compromised a British cryptocurrency exchange, making off with over $3m in Bitcoin. Cashaa has halted all its crypto-related transactions after cyber-criminals stole more than…
Continue ReadingAuthor. Dancho Danchev is the world’s leading expert in the field of cybercrime fighting and threat intelligence gathering having actively pioneered his own methodology for processing threat intelligence throughout the past decade following a successfu…
Continue Reading