apt & targeted attacks

Recent Cyberattacks Increasingly Target Open-source Web Servers

Posted on February 22, 2022February 23, 2022 by Admin

Source: Apache HTTP Server Project Weaponized vulnerabilities lead to great risk Not only has the number of total Apache HTTP Server vulnerabilities gone up, but so has the number of weaponized vulnerabilities. Trend Micro detected that at least 15 of the 57 vulnerabilities found in the past five years were weaponized and used in malicious activities. The most common types of attack include denial of service (DoS), path traversal, server-side request forgery (SSRF), and remote…

Security Automation with Vision One & Palo Alto

Posted on February 14, 2022February 15, 2022 by Admin

Security Automation with Vision One & Palo Alto APT & Targeted Attacks Trend Micro Vision One™ integrates with Palo Alto Networks Cortex™ XSOAR to drive automated response to incidents uncovered by Vision One. By: Trend Micro February 14, 2022 Read time: ( words) Trend Micro Vision One™ is at the core of our unified cybersecurity platform, delivering powerful, industry-leading extended detection and response (XDR), centralized visibility and risk insights. Vision One integrates with Palo Alto…

Investigating APT36 or Earth Karkaddans Attack Chain and Malware Arsenal

Posted on January 24, 2022January 24, 2022 by Admin

Investigating APT36 or Earth Karkaddans Attack Chain and Malware Arsenal APT & Targeted Attacks We investigated the most recent activities of APT36, also known as Earth Karkaddan, a politically motivated advanced persistent threat (APT) group, and discuss its use of CapraRAT, an Android RAT with clear similarities in design to the group’s favored Windows malware, Crimson RAT. By: Trend Micro January 24, 2022 Read time: ( words) APT36, also known as Earth Karkaddan, a politically…

Defending Users’ NAS Devices From Evolving Threats

Posted on January 20, 2022January 21, 2022 by Admin

Defending Users’ NAS Devices From Evolving Threats In our latest research, we analyze the threats targeting well-known brands of network-attached storage (NAS) devices. By: Stephen Hilt, Fernando Merces January 20, 2022 Read time: ( words) Threats to the internet of things (IoT) continue to evolve as users and businesses grow increasingly reliant on these tools for constant connectivity, access to information and data, and workflow continuity. Cybercriminals have taken notice of this dependence and now…

New Ransomware Spotted: White Rabbit and Its Evasion Tactics

Posted on January 18, 2022January 18, 2022 by Admin

New Ransomware Spotted: White Rabbit and Its Evasion Tactics Ransomware We analyze the ransomware White Rabbit and bring into focus the familiar evasion tactics employed by this newcomer. By: Arianne Dela Cruz, Bren Matthew Ebriega, Don Ovid Ladores, Mary Yambao January 18, 2022 Read time: ( words) We spotted the new ransomware family White Rabbit discretely making a name for itself by executing an attack on a local US bank in December 2021. This newcomer takes a page from Egregor, a more established ransomware family, in hiding its malicious activity and carries a potential connection to the advanced persistent…

Earth Lusca Employs Sophisticated Infrastructure, Varied Tools and Techniques

Posted on January 17, 2022January 17, 2022 by Admin

Since mid-2021, we have been investigating a rather elusive threat actor called Earth Lusca that targets organizations globally via a campaign that uses traditional social engineering techniques such as spear phishing and watering holes. The group’s primary motivation seems to be cyberespionage: the list of its victims includes high value targets such as government and educational institutions, religious movements, pro-democracy and human rights organizations in Hong Kong, Covid-19 research organizations, and the media, among others. However,…

Tropic Trooper Targets Transportation and Government Organizations

Posted on December 14, 2021December 15, 2021 by Admin

Our long-term monitoring of the cyberespionage group Earth Centaur (aka Tropic Trooper) shows that the threat actors are equipped with new tools and techniques. The group seems to be targeting transportation companies and government agencies related to transportation. Source link

« 1 2 3 4

Recent Cyberattacks Increasingly Target Open-source Web Servers

Security Automation with Vision One & Palo Alto

Investigating APT36 or Earth Karkaddans Attack Chain and Malware Arsenal

Defending Users’ NAS Devices From Evolving Threats

New Ransomware Spotted: White Rabbit and Its Evasion Tactics

Earth Lusca Employs Sophisticated Infrastructure, Varied Tools and Techniques

Tropic Trooper Targets Transportation and Government Organizations

VMWARE

Helping Public Sector Organisations Define Cloud Strategy

How to change the VLAN ID of the Service Console in ESX from the command line/console

Cisco UCS and Vmware Interfaces (Vnics) HA Design Considerations

Troubleshooting network and TCP/UDP port connectivity issues on ESX/ESXi(2020669)

vSphere Client Parameters

Configuration Templates

CUE Licenses

Trouble shooting Unity Express with Call Manager Integeration & Operational Issues

CME Configuration Example: SIP Trunks to Viatalk and VoIP.ms

SIP Phone registration – CME Configuration

CUE Voicemail + VPIM networking (CUE to unity)