Cybercriminals - Security Intelligence

Professionals on the steps of a government building: Cannon Trojan

news

Sofacy Group Targets Government Organizations With New Cannon Trojan

The Sofacy group recently targeted several government organizations around the world with the new Cannon Trojan.

November 29, 2018 | By David Bisson

news

A businessman using a laptop: remote access Trojan

news

TA505 Threat Group Distributes Previously Undocumented tRat Remote Access Trojan

Researchers observed the TA505 threat group spreading a previously undocumented remote access Trojan (RAT) called tRaT.

November 20, 2018 | By David Bisson

news

Illustration of a chain in a crisscross formation over a laptop screen: ransomware-as-a-service

news

Ransomware-as-a-Service Program Offers Affiliates Up to 75 Percent of Revenue to Spread Infection

A ransomware-as-a-service program called FilesLocker offers affiliates commissions of up to 75 percent on all revenue stolen from victims.

November 8, 2018 | By Shane Schick

news

news

Destructive Attacks Spike in Q3, Putting Election Security at Risk

Nearly one-third of incidents reported in Q3 were classified as "destructive attacks," according to a recent report, putting election security at risk leading up to the 2018 midterms.

November 5, 2018 | By David Bisson

news

Illustration of a magnifying glass over a laptop with email icons representing phishing detection.

news

Fraudsters Abuse Trusted Web Services to Conduct Phishing Attacks

Researchers reported that threat actors are using web services such as Google Drive, SharePoint and Dropbox to host files containing malicious links as part of phishing campaigns.

October 30, 2018 | By David Bisson

news

A man typing code on a desktop computer: malware classification

news

Threat Actors Use Delphi Packer to Shield Binaries From Malware Classification

Security researchers observed threat actors using a Delphi packer to shield their binaries from malware classification by antivirus and other detection tools.

October 9, 2018 | By David Bisson

news

Illustration of malware installation: CobInt

news

Cobalt Gang Using CobInt Downloader to Install Malware on Systems of Interest

Security researchers observed the threat group Cobalt Gang using a downloader known as CobInt to infect and subsequently install additional malware on systems of interest.

September 20, 2018 | By David Bisson

news

Professionals collaborating in a meeting room: cyberattack framework

article

How a Cyberattack Framework Can Help Reduce Risk at All Levels, Part 4

Even after a successful attack, security teams can still minimize the financial and reputational damage associated with a breach by following the IBM X-Force cyberattack framework.

August 9, 2018 | By Alexandrea Berninger

article

A large team meeting in a modern office: cyberattack framework

article

How a Cyberattack Framework Can Help Reduce Risk at All Levels, Part 3

An attacker who gains access won't necessarily walk away with an organization's proprietary data. Here's how a cyberattack framework can help you subvert an attacker already in a network.

August 1, 2018 | By Alexandrea Berninger

article

news

Threat Report Provides Evidence of Threat Actors Targeting ERP Applications

According to a new report, threat actors are targeting enterprise resource planning (ERP) applications like SAP — and, in some cases, are exploiting a vulnerability that was disclosed in 2016.

July 26, 2018 | By Security Intelligence Staff

news

Attackers Compromise Admin Account to Infect Manufacturing Company With BitPaymer Ransomware

Spear Phishing Report Card: Perfect Scores in School Security Pen Testing

Google 2FA Approach Turns Android Smartphones Into Security Keys

April Scams May Ruin Plans: Threat Actors Ramp Up for Tax Scam Season

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

How a Cunning Remote Overlay Malware Met Its Match

The US Is Slow to Adopt EHRs, But That Might Actually Be a Good Thing for Healthcare Security

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

Credential Dumping Campaign Hits Multinational Corporations

Cybercriminals Spoof Major Accounting and Payroll Firms in Tax Season Malware Campaigns

Buffer Overflow Vulnerability in TP-Link Routers Can Allow Remote Attackers to Take Control

Podcast: Muscle Memory and Cyber Fitness Training

Podcast: Zero Trust and the Evolving Role of Identity and Access Management

Podcast: Digital Identity Trust, Part 3 — Powering Digital Growth With Digital Identity Trust

Podcast: Monitoring National Cybersecurity Trends With Former NSA Deputy Director Bill Crowell

Webinar: MacOS Management Made Easy with MaaS360

Webinar: Encryption is the Fastest Way to Protect Data

Webinar: Under the Radar: Live Webinar and Demo

Webinar: Facilitating Secure Hybrid Cloud Adoption with Guardium

Tag: Cybercriminals

Sofacy Group Targets Government Organizations With New Cannon Trojan

TA505 Threat Group Distributes Previously Undocumented tRat Remote Access Trojan

Ransomware-as-a-Service Program Offers Affiliates Up to 75 Percent of Revenue to Spread Infection

Destructive Attacks Spike in Q3, Putting Election Security at Risk

Fraudsters Abuse Trusted Web Services to Conduct Phishing Attacks

Threat Actors Use Delphi Packer to Shield Binaries From Malware Classification

Cobalt Gang Using CobInt Downloader to Install Malware on Systems of Interest

How a Cyberattack Framework Can Help Reduce Risk at All Levels, Part 4

How a Cyberattack Framework Can Help Reduce Risk at All Levels, Part 3

Threat Report Provides Evidence of Threat Actors Targeting ERP Applications