information security

Warning: Thread Hijacking Attack Targets IT Networks, Stealing NTLM Hashes

Posted on March 5, 2024March 9, 2024 by Admin

Mar 05, 2024NewsroomEmail Security / Network Security The threat actor known as TA577 has been observed using ZIP archive attachments in phishing emails with an aim to steal NT LAN Manager (NTLM) hashes. The new attack chain “can be used for sensitive information gathering purposes and to enable follow-on activity,” enterprise security firm Proofpoint said in a Monday report. At least two campaigns taking advantage of this approach were observed on February 26 and 27,…

Ossie Munroe | Top Cybersecurity Leaders 2024

Posted on March 1, 2024March 1, 2024 by Admin

While Ossie Munroe is relatively new to the security industry, his career at Bloomberg spans three decades. Munroe joined the organization in 1990, moving through a variety of positions before transitioning into the security field in 2013. “While my career journey within Bloomberg has seen me move between five departments since my start at the company, that bares no reflection on the company’s culture for internal career changes. Instead, this decision was driven mostly by…

Jorge Mario Ochoa | Top Cybersecurity Leaders 2024

Posted on March 1, 2024March 1, 2024 by Admin

Learning is a lifelong process and is something Jorge Mario Ochoa has certainly taken to heart. The cybersecurity leader complements his knowledge with master’s degrees in seven disciplines including leadership, business administration, project management, talent management, big data and data analysis, cybersecurity, artificial intelligence and deep learning, as well as a Ph.D. in psychology. Jorge Mario considers a well-rounded education an important tool for cybersecurity professionals. “I am a firm advocate for education and collaboration,”…

Lester Godsey | Top Cybersecurity Leaders 2024

Posted on March 1, 2024March 2, 2024 by Admin

Over the past three decades, Lester Godsey has dedicated himself to serving his communities through his roles in public sector cybersecurity. Godsey took his first cybersecurity job as a Support Center Analyst in the College of Engineering and Applied Sciences at his alma mater, Arizona State University (ASU), while he was an undergraduate studying music. While he initially considered becoming a band teacher, he soon discovered his interest in system administration and cybersecurity, which eventually…

Invoice Phishing Alert: TA866 Deploys WasabiSeed & Screenshotter Malware

Posted on January 20, 2024January 27, 2024 by Admin

The threat actor tracked as TA866 has resurfaced after a nine-month hiatus with a new large-volume phishing campaign to deliver known malware families such as WasabiSeed and Screenshotter. The campaign, observed earlier this month and blocked by Proofpoint on January 11, 2024, involved sending thousands of invoice-themed emails targeting North America bearing decoy PDF files. “The PDFs contained OneDrive URLs that, if clicked, initiated a multi-step infection chain eventually leading to the malware payload, a…

Unveiling the power of external attack surface management

Posted on December 26, 2023December 26, 2023 by Admin

Verizon’s latest data breach report shows that 83% of attacks are carried out by external actors, exploiting vulnerabilities in companies’ network perimeters. At the same time, Gartner has identified External Attack Surface Management (EASM) as the top cybersecurity trend for the coming 5 to 10 years. So, what exactly is EASM, and why is it gaining such global prominence? EASM is a cybersecurity approach that involves continuously monitoring and assessing a company’s publicly accessible digital assets for vulnerabilities….

New Campaign Targets Middle East Governments with IronWind Malware

Posted on November 14, 2023November 18, 2023 by Admin

Nov 14, 2023NewsroomCyber Espionage / Threat Intelligence Government entities in the Middle East are the target of new phishing campaigns that are designed to deliver a new initial access downloader dubbed IronWind. The activity, detected between July and October 2023, has been attributed by Proofpoint to a threat actor it tracks under the name TA402, which is also known as Molerats, Gaza Cyber Gang, and shares tactical overlaps with a pro-Hamas hacking crew known as…

New ZenRAT Malware Targeting Windows Users via Fake Password Manager Software

Posted on September 27, 2023October 3, 2023 by Admin

Sep 27, 2023THNMalware / Cyber Threat A new malware strain called ZenRAT has emerged in the wild that’s distributed via bogus installation packages of the Bitwarden password manager. “The malware is specifically targeting Windows users and will redirect people using other hosts to a benign web page,” enterprise security firm Proofpoint said in a technical report. “The malware is a modular remote access trojan (RAT) with information stealing capabilities.” ZenRAT is hosted on fake websites…

Sophisticated Phishing Campaign Targeting Chinese Users with ValleyRAT and Gh0st RAT

Posted on September 20, 2023October 4, 2023 by Admin

Sep 20, 2023THNMalware Attack / Cyber Threat Chinese-language speakers have been increasingly targeted as part of multiple email phishing campaigns that aim to distribute various malware families such as Sainbox RAT, Purple Fox, and a new trojan called ValleyRAT. “Campaigns include Chinese-language lures and malware typically associated with Chinese cybercrime activity,” enterprise security firm Proofpoint said in a report shared with The Hacker News. The activity, observed since early 2023, entails sending email messages containing…

Cybercriminals Renting WikiLoader to Target Italian Organizations with Banking Trojan

Posted on August 1, 2023August 19, 2023 by Admin

Aug 01, 2023THNCyber Attack / Malware Organizations in Italy are the target of a new phishing campaign that leverages a new strain of malware called WikiLoader with an ultimate aim to install a banking trojan, stealer, and spyware referred to as Ursnif (aka Gozi). “It is a sophisticated downloader with the objective of installing a second malware payload,” Proofpoint said in a technical report. “The malware uses multiple mechanisms to evade detection and was likely…

« 1 2 3 4 … 35 »

Warning: Thread Hijacking Attack Targets IT Networks, Stealing NTLM Hashes

Ossie Munroe | Top Cybersecurity Leaders 2024

Jorge Mario Ochoa | Top Cybersecurity Leaders 2024

Lester Godsey | Top Cybersecurity Leaders 2024

Invoice Phishing Alert: TA866 Deploys WasabiSeed & Screenshotter Malware

Unveiling the power of external attack surface management

New Campaign Targets Middle East Governments with IronWind Malware

New ZenRAT Malware Targeting Windows Users via Fake Password Manager Software

Sophisticated Phishing Campaign Targeting Chinese Users with ValleyRAT and Gh0st RAT

Cybercriminals Renting WikiLoader to Target Italian Organizations with Banking Trojan

VMWARE

Helping Public Sector Organisations Define Cloud Strategy

How to change the VLAN ID of the Service Console in ESX from the command line/console

Cisco UCS and Vmware Interfaces (Vnics) HA Design Considerations

Troubleshooting network and TCP/UDP port connectivity issues on ESX/ESXi(2020669)

vSphere Client Parameters

Configuration Templates

CUE Licenses

Trouble shooting Unity Express with Call Manager Integeration & Operational Issues

CME Configuration Example: SIP Trunks to Viatalk and VoIP.ms

SIP Phone registration – CME Configuration

CUE Voicemail + VPIM networking (CUE to unity)