Zoho One suite expands to more than 50 apps
Zoho has expanded its Zoho One business software suite to include more than 50 apps, adding a wide range of capabilities around analytics, security management, and employee experience. The vendor launched Zoho One in 2017 with the goal of providing access to a wider range of the applications across its extensive portfolio. The app suite […] more…Cybereason Partners With Google Chronicle on XDR Product
Extended Detection and Response (XDR) is touted as the security solution for the increasingly complex modern IT ecosphere. The principle is to extend EDR threat hunting beyond the endpoint and across the entire infrastructure. Cybereason has announced a partnership with Google Chronicle – the latter to provide ecosphere data, and the former to provide the […] more…Ransomware in the CIS
Introduction These days, when speaking of cyberthreats, most people have in mind ransomware, specifically cryptomalware. In 2020–2021, with the outbreak of the pandemic and the emergence of several major cybercriminal groups (Maze, REvil, Conti, DarkSide, Avaddon), an entire criminal ecosystem took shape, leading to a mounting worldwide wave of attacks on large organizations with pockets […] more…Microsoft lets Windows 11 loose on the world
Microsoft on Monday began releasing Windows 11 as one market after another rolled into Oct. 5, the day it had set as the launch date for the operating system upgrade. Personal computers running Windows 10 that meet Microsoft’s stricter-than-usual hardware requirements were immediately eligible for the free Windows 11 download. New devices with Windows 11 […] more…BloodyStealer and gaming assets for sale
Earlier this year, we covered the threats related to gaming, and looked at the changes from 2020 and the first half of 2021 in mobile and PC games as well as various phishing schemes that capitalize on video games. Many of the threats faced by gamers are associated with loss of personal data, and particularly, […] more…Finding 0-days with Jackalope
Overview On March 21st, 2021, the McAfee Enterprise Advanced Threat Research (ATR) team released several vulnerabilities it discovered in the Netop Vision Pro Education software, a popular schooling software used by more than 9,000 school systems around the world. Netop was very responsive and released several updates to address many of the critical findings, creating […] more…BlackMatter Ransomware Analysis; The Dark Side Returns
BlackMatter is a new ransomware threat discovered at the end of July 2021. This malware started with a strong group of attacks and some advertising from its developers that claims they take the best parts of other malware, such as GandCrab, LockBit and DarkSide, despite also saying they are a new group of developers. We […] more…Detection evasion in CLR and tips on how to detect such attacks
In terms of costs, the age-old battle that pits attacker versus defender has become very one sided in recent years. Almost all modern attacks (and ethical offensive exercises) use Mimikatz, SharpHound, SeatBelt, Rubeus, GhostPack and other toolsets available to the community. This so-called githubification is driving attackers’ costs down and reshaping the focus from malware […] more…Great R packages for data import, wrangling, and visualization
The table below shows my favorite go-to R packages for data import, wrangling, visualization and analysis — plus a few miscellaneous tasks tossed in. The package names in the table are clickable if you want more information. To find out more about a package once you’ve installed it, type help(package = "packagename") in your R […] more…How Threat Response is Evolving
As adversaries changed their view of an attack to include vectors across an organization, defenders have had to evolve their approach as well. This is best captured by Mark Harris from Gartner who observed that adversaries have shifted their focus of attacks from infecting files to infecting systems and now to infecting the entire enterprise. […] more…4 quick tips for Cortana in Windows 10
Microsoft’s digital assistant Cortana was one of the major additions to Windows 10 when it first came out. But it was launched back in December 2015, and it’s changed quite a bit since then. Over the years, it’s had new features added, and then others taken away. Depending on which version of Windows you’re using, […] more…Applied Yara training – Q&A
by Vicente Diaz (@trompi) from Virustotal, Costin Raiu (@craiu) from Kaspersky and with the kind support of Victor M. Alvarez (@plusvic) from Virustotal Introduction On August 31, 2021 we ran a joint webinar between Virustotal and Kaspersky, with a focus on Yara rules best practices and real world examples. If you didn’t have the chance […] more…Applied YARA training Q&A
Introduction On August 31, 2021 we ran a joint webinar between VirusTotal and Kaspersky, with a focus on YARA rules best practices and real world examples. If you didn’t have the chance to watch the webinar live, you can see it as a recording on Brighttalk: Applied YARA training. During the webinar we received an […] more…The most important enhancement you can make to Gboard on Android
Crack your phalanges and limber up your tendons, my fellow Android-adoring animal: We’re about to make a tiny but tremendously significant change to your Android keyboard setup. I josh you not — I don’t even arnold you, in fact: With a whopping 30 seconds of setup, this quick switcheroo will make you about five times […] more…The most important Gboard enhancement you can make on Android
Crack your phalanges and limber up your tendons, my fellow Android-adoring animal: We’re about to make a tiny but tremendously significant change to your Android keyboard setup. I josh you not — I don’t even arnold you, in fact: With a whopping 30 seconds of setup, this quick switcheroo will make you about five times […] more…6 Tips for a Safer and Easier Telemedicine Visit
We’ve all been there. It’s the middle of the night and you wake up to a sad and sniffly kiddo shuffling into your room. Yup, looks like someone has a temperature. You phone the on-call doctor to make sure it’s nothing serious and then set an alarm so you can make an appointment when the […] more…More information
- Telcos should only retain metadata to fight serious crime, EU judge says
- Apple iOS/iPadOS/tvOS/watchOS CVE-2019-8836 Memory Corruption Vulnerability
- Being future ready in a generative AI world
- Q&A: Real estate exec sees ’15-minute city’ concept migrating from Europe to the US
- 1H 2014 Spam Attacks and Trends
- Security Management and Operations
- Microsoft Windows MS XML CVE-2019-0790 Remote Code Execution Vulnerability
- Lawsuit alleging Gmail ads are "wiretapping" gets judge’s OK
- PoS Clients Targeted with Cobalt Strike, Card Scraping Malware
- Dutch Uni Gets Cyber Ransom Money Back… With Interest