Sniffing Out SharpHound on its Hunt for Domain Admin
Secureworks® Counter Threat Unit™ (CTU) periodically conducts purple team exercises called “research sprints” to understand and emulate modern attack techniques,...
Threat Intel
Category Added in a WPeMatico Campaign
Unravelling the Attack Surface of AI Systems
Figure 1. Vulnerability classes in AI systems. Artificial intelligence (AI) systems are a rapidly evolving part of the technology landscape....
Unravelling the Attack Surface of AI Systems
Figure 1. Vulnerability classes in AI systems. Artificial intelligence (AI) systems are a rapidly evolving part of the technology landscape....
China Likely Also Sought IP In Barracuda Attacks: Researcher
Security News Kyle Alspach June 23, 2023, 12:03 PM EDT It appears the hackers working for...
Chinese Cyberespionage Group BRONZE SILHOUETTE Targets U.S. Government and Defense Organizations
On May 24, 2023, the U.S. National Security Agency (NSA) issued a joint cybersecurity advisory highlighting a cluster of activity...
Tampering with Conditional Access Policies Using Azure AD Graph API
Summary Azure Active Directory (Azure AD) is Microsoft's cloud-based identity and access management service, and it supports multiple authentication methods....
The Growing Threat from Infostealers
Summary Secureworks® Counter Threat Unit™ (CTU) researchers have observed infostealers (also known as stealers) playing an increasingly important role in...
20 Hottest Cybersecurity Products At RSAC 2023
Security News Kyle Alspach April 25, 2023, 11:57 AM EDT At RSA Conference 2023 this week, vendors are showcasing new...
Proofpoint Unveils New Innovations to Combat Increasingly Common Threats
Ahead of the 2023 RSA Conference, Proofpoint, Inc., the Sunnyvale, Calif.-based cybersecurity and compliance company, unveiled a host of innovations...
Bumblebee Malware Distributed Via Trojanized Installer Downloads
Using malicious Google Ads or SEO poisoning to distribute malware has become a common tactic for cybercriminals. For example, in...
Detecting the Use of Stolen AWS Lambda Credentials
Summary Amazon Web Service (AWS) Lambda is a serverless event-driven compute service. It is a function as a service (FaaS)...
Clop Ransomware Leak Site Shows Increased Activity
Secureworks® Counter Threat Unit™ (CTU) researchers are investigating an increase in the number of victims posted on the Clop ransomware...
COBALT ILLUSION Masquerades as Atlantic Council Employee
Secureworks® Counter Threat Unit™ (CTU) researchers are investigating suspicious activity reported via Twitter on February 24, 2023. Multiple individuals involved...
87% of Container Images in Production Have Critical or High-Severity Vulnerabilities
At the recent CloudNativeSecurityCon in Seattle, 800 DevSecOps practitioners gathered to address a myriad of software supply chain security issues,...
