Cybercrime - MySecurity Marketplace

2021 Bitdefender Global Report: Cybersecurity and Online Behaviours

Executive Summary PLATFORMS, APPLICATIONS,SERVICES Internet users have on average8 online platform accounts. Of those analyzed, the top used are Facebook, WhatsApp, Gmail and YouTube. There are several usage differences among males and females and across age groups. Facebook and WhatsApp are used most by those 25+, Gmail is more popular after 35, while YouTube and […]

2021 Bitdefender Global Report: Cybersecurity and Online Behaviours Read More »

The State of Ransomware in Financial Services 2021

By execassist

Based on an independent survey of 550 IT decision makers, this report shares new insights into the current state of ransomware in the financial services sector. It provides a deep dive into the prevalence of ransomware in financial services, the impact of those attacks on victims, the cost of ransomware remediation, as well as how

The State of Ransomware in Financial Services 2021 Read More »

FIN8 Threat Actor Goes Agile with New Sardonic Backdoor

By execassist

Since January 2016, FIN8 has been steadily building a reputation among financially motivated advanced threat actors. Bitdefender researchers are constantly monitoring this group’s activity, and previous research released in early 2021 documented the use of a new, improved version of the BADHATCH backdoor. This whitepaper focuses on the analysis of a new backdoor component discovered

FIN8 Threat Actor Goes Agile with New Sardonic Backdoor Read More »

RANSOMWARE: A look at the criminal art of malicious code, pressure, and manipulation

By execassist

GOALS The goals of this paper are to demonstrate how dangerous ransomware has become, describe the latest techniques used by ransomware gangs, and suggest what your organization can do to reduce exposure to, and damage from, ransomware attacks. Three ransomware attack vectors are addressed in this order: remote access, email, and supply chain. RANSOMWARE —

RANSOMWARE: A look at the criminal art of malicious code, pressure, and manipulation Read More »

Global Incident Response Threat Report

By execassist

Manipulating reality: The rise of business communication compromise, time-stamp manipulation, and cloud-jacking empowers adversaries to execute integrity attacks Key findings Attacks are becoming more destructive and targeted through advanced techniques. Respondents indicate that targeted victims now experience integrity and destructive attacks more than 50 percent of the time. Cybercriminals are achieving this through emerging techniques,

Global Incident Response Threat Report Read More »

Avast Global PC Risk Report, H1 2021 Snapshot

By execassist

It has been more than a year since Covid-19 started spreading and, in that time, the virus has defined the entire world, both online and offline. Avast observed cybercriminals using the pandemic to their advantage, spreading scams and phishing attacks to exploit people’s natural thirst for information during unprecedented times. During this time, ransomware attacks

Avast Global PC Risk Report, H1 2021 Snapshot Read More »

Debugging MosaicLoader, One Step at a Time

By execassist

Bitdefender researchers have noticed a new malware strain spiking in our telemetry. What caught our attention were processes that add local exclusions in Windows Defender for specific file names (prun.exe, appsetup.exe, etc.), that all reside in the same folder, called \PublicGaming\. Further investigation revealed that this malware is a downloader that can deliver any payload

Debugging MosaicLoader, One Step at a Time Read More »

A Fresh Look at Trickbot’s Ever-Improving VNC Module

By execassist

The journey of Trickbot starts almost half a decade ago, when it appeared in the form of a banker and credential-stealing application. Drawing inspiration from Dyre (or Dyreza), Trickbot consists of an ecosystem of plugin modulesand helper components. As of late, the Trickbot group, which has managed to infect millions of computers worldwide, has played

A Fresh Look at Trickbot’s Ever-Improving VNC Module Read More »

The State of Secure Identity

By execassist

Traditionally, the information security domain has examined identity through the lens of the corporate enterprise. In this context, user lifecycle management is about onboarding and managing the identity of employees who need access to corporate systems. For consumer-facing businesses, customer identity and access management (CIAM) is just as critical. And, this is why I’m so

The State of Secure Identity Read More »

ThreatLabZ Ransomware Review: The Advent of Double Extortion

By execassist

For businesses around the world, 2020 was a year of change and disruption for reasons that go beyond the pandemic: ransomware was on the rise in a big way and underwent more change and innovation in 2020 than it had in a decade. Double extortion, third-party attacks, and DDoS techniques emerged, pushing ransomware even further

ThreatLabZ Ransomware Review: The Advent of Double Extortion Read More »