Month: September 2016
-
ForeScout Joins Splunk’s Adaptive Response Initiative
ForeScout Joins Splunk’s Adaptive Response Initiative http://ift.tt/2cLbipr ForeScout Technologies, Inc. and Splunk Inc. announced that ForeScout has joined Splunk’s Adaptive Response Initiative. Powered by a growing list of leading cybersecurity technology vendors, Adaptive Response is a best-of-breed security initiative that leverages end-to-end context and continuous…. Threat Intel via CERT-EU : EMM AlertFilter System: CERT-LatestNews http://ift.tt/1gYYfLb…
-
Rethinking Connection Security Indicators via /r/netsec
Rethinking Connection Security Indicators http://ift.tt/29CxEF4 Submitted September 28, 2016 at 02:18PM by a0viedo via reddit http://ift.tt/2cCaB3r
-
Rig Exploit Kit from the Afraidgate Campaign, (Wed, Sep 28th)
Rig Exploit Kit from the Afraidgate Campaign, (Wed, Sep 28th) http://ift.tt/2dqcvWb Introduction Yesterday on Tuesday 2016-09-27, the Afraidgate campaign switched from Neutrino exploit kit (EK) to Rig EK [1]. As we go into Wednesday 2016-09-28, this trend continues. So let’s examine another case of Afraidgate using Rig EK! Details The Afraidgate campaign has been sending…
-
SWIFT Toughens Customer Security With New Mandatory Rules
SWIFT Toughens Customer Security With New Mandatory Rules http://ift.tt/2drbIUY SWIFT Toughens Customer Security With New Mandatory Rules Measures to include set of core safety standards and assurance framework requiring annual self-attestation by SWIFT members. In a move towards strengthening customer security, SWIFT — the financial services secure messaging network that has been leveraged by attackers…
-
Locky Ransomware Drops Offline Mode
Locky Ransomware Drops Offline Mode http://ift.tt/2dCwAqX Locky, one of the most prolific ransomware families this year, has changed its modus operandi once again by adopting a new extension that is appended to encrypted files. First observed in February, when it stood out because it could encrypt files on unmapped network shares, Locky was originally renaming the…
-
Cisco Cracks GozNym Trojan DGA, Sinkholes Botnet
Cisco Cracks GozNym Trojan DGA, Sinkholes Botnet http://ift.tt/2drdjFu An extensive analysis of the hybrid Trojan dubbed GozNym has allowed Cisco researchers to reverse engineer its domain generation algorithm (DGA) and start sinkholing botnets that rely on the malware. The existence of GozNym, which is a combination between the Nymaim dropper and the Gozi ISFB banking…
-
TheDarkOverlord holds investment bank to ransom, or else hacked files will be released
TheDarkOverlord holds investment bank to ransom, or else hacked files will be released http://ift.tt/2d45AyE No-one knows who TheDarkOverlord is. No-one even knows if he or she is one lone hacker, or a group of hackers. But one thing is certain, TheDarkOverlord must be giving some companies sleepless nights as they struggle to work out the…
-
Recorded Future Announces Its Participation in Splunk’s Adaptive Response Initiative
Earlier this year, Splunk announced their Adaptive Response Initiative — an effort bringing best-in-breed security capabilities together in ways that will improve an organization’s ability to defend against advanced attacks. At the core of the initiative is a new version of Splunk Enterprise Security, scheduled to be generally available soon, that facilitates bi-directional integrations from…
-
DerbyCon 2016 CTF Write Up via /r/netsec
DerbyCon 2016 CTF Write Up http://ift.tt/2dzjasX Submitted September 28, 2016 at 01:43PM by eth_ via reddit http://ift.tt/2cKLOIG
-
A curated list of cryptography resources and links. via /r/netsec
A curated list of cryptography resources and links. http://ift.tt/28KI3jy Submitted September 28, 2016 at 10:25AM by ffyns via reddit http://ift.tt/2dr0meT
securityXspace 