Cybercrime - MySecurity Marketplace

RANSOMWARE: A look at the criminal art of malicious code, pressure, and manipulation

GOALS The goals of this paper are to demonstrate how dangerous ransomware has become, describe the latest techniques used by ransomware gangs, and suggest what your organization can do to reduce exposure to, and damage from, ransomware attacks. Three ransomware attack vectors are addressed in this order: remote access, email, and supply chain. RANSOMWARE — […]

RANSOMWARE: A look at the criminal art of malicious code, pressure, and manipulation Read More »

Global Incident Response Threat Report

By execassist

Manipulating reality: The rise of business communication compromise, time-stamp manipulation, and cloud-jacking empowers adversaries to execute integrity attacks Key findings Attacks are becoming more destructive and targeted through advanced techniques. Respondents indicate that targeted victims now experience integrity and destructive attacks more than 50 percent of the time. Cybercriminals are achieving this through emerging techniques,

Global Incident Response Threat Report Read More »

Avast Global PC Risk Report, H1 2021 Snapshot

By execassist

It has been more than a year since Covid-19 started spreading and, in that time, the virus has defined the entire world, both online and offline. Avast observed cybercriminals using the pandemic to their advantage, spreading scams and phishing attacks to exploit people’s natural thirst for information during unprecedented times. During this time, ransomware attacks

Avast Global PC Risk Report, H1 2021 Snapshot Read More »

Debugging MosaicLoader, One Step at a Time

By execassist

Bitdefender researchers have noticed a new malware strain spiking in our telemetry. What caught our attention were processes that add local exclusions in Windows Defender for specific file names (prun.exe, appsetup.exe, etc.), that all reside in the same folder, called \PublicGaming\. Further investigation revealed that this malware is a downloader that can deliver any payload

Debugging MosaicLoader, One Step at a Time Read More »

A Fresh Look at Trickbot’s Ever-Improving VNC Module

By execassist

The journey of Trickbot starts almost half a decade ago, when it appeared in the form of a banker and credential-stealing application. Drawing inspiration from Dyre (or Dyreza), Trickbot consists of an ecosystem of plugin modulesand helper components. As of late, the Trickbot group, which has managed to infect millions of computers worldwide, has played

A Fresh Look at Trickbot’s Ever-Improving VNC Module Read More »

Alexis Dorais-Joncas

By haridas_mondal

Security Intelligence Team Lead at ESET Alexis Dorais-Joncas started his career in cybersecurity in 2010, when he was hired by ESET as a malware researcher. In 2015, Alexis was appointed head of ESET’s R&D branch office located in downtown Montreal, where he and his team focus on cutting edge malware research, network security, and targeted

Alexis Dorais-Joncas Read More »

The State of Secure Identity

By execassist

Traditionally, the information security domain has examined identity through the lens of the corporate enterprise. In this context, user lifecycle management is about onboarding and managing the identity of employees who need access to corporate systems. For consumer-facing businesses, customer identity and access management (CIAM) is just as critical. And, this is why I’m so

The State of Secure Identity Read More »

ThreatLabZ Ransomware Review: The Advent of Double Extortion

By execassist

For businesses around the world, 2020 was a year of change and disruption for reasons that go beyond the pandemic: ransomware was on the rise in a big way and underwent more change and innovation in 2020 than it had in a decade. Double extortion, third-party attacks, and DDoS techniques emerged, pushing ransomware even further

ThreatLabZ Ransomware Review: The Advent of Double Extortion Read More »

Modern Bank Heists 4.0

By execassist

This marks the fourth edition of the Modern Bank Heists report, which annually takes the pulse of some of the financial industry’s top CISOs and security leaders. Thank you, again, for reading along, and thank you to the 126 security leaders who participated in this year’s study. 48 percent of the financial institutions (FIs) are

Modern Bank Heists 4.0 Read More »

2021 SonicWall Cyber Threat Report

By execassist

Cybercriminals have always been opportunists, and the 2020 COVID-19 pandemic offered more proof of this than perhaps any other event before it. Threat actors are becoming more powerful, more aggressive and more numerous, increasingly abandoning the tendency to look for the biggest quarry in favor of attacking the least defended. And 2020 was rife with

2021 SonicWall Cyber Threat Report Read More »