EDR solutions enable threat hunting teams to fine-tune behavioral detection rules and determine the techniques by which malware spreads through a network.
Threat actors are learning from ransomware attacks such as WannaCry by adding a features like a worm module to their malware.
With the QRadar NotPetya Content Pack, security analysts can monitor their networks for indicators of NotPetya ransomware in real time.
A new scanning app found that more than 50,000 systems across the world are still vulnerable to the EternalBlue exploit, despite a patch being available.
Organizations around the world and across industries have had to deal with more than their fair share of devastating data breaches so far in 2017.
New research revealed that the threat actors behind the recent NotPetya wiperware attacks had established three backdoors in the M.E.Doc servers.
Further analysis of impacted Petya ransomware victims led our team to conclude that this attack was specifically aimed at organizations within Ukraine.
It appears that the current Petya payload is being distributed using the same exploits that were part of the leaks that powered the spread of WannaCry.