Exploits – Page 14 – Computer Security Articles

Uncovering cross-process injection with Windows Defender ATP

March 8, 2017 admin Advanced persistent threats, Antimalware research for IT pros and enthusiasts, APTs, bitcoin, CoinMiner, Creators Update, cross-process injection, Exploits, Fynloski RAT, Gatak, GOLD activity group, in-memory attacks, post-breach detection, public preview, Windows 10, Windows Defender Advanced Threat Protection, Windows Defender ATP, zero-day exploits

Credit to Author: msft-mmpc| Date: Thu, 09 Mar 2017 06:16:01 +0000

Windows Defender Advanced Threat Protection (Windows Defender ATP) is a post-breach solution that alerts security operations (SecOps) personnel about hostile activity. As the nature of attacks evolve, Windows Defender ATP must advance so that it continues to help SecOps personnel uncover and address the attacks. With increasing security investments from Microsoft—read how Windows 10 continues to raise…

Security Sophos

Live from RSA 2017: Nation states crafting ‘meticulous’ attack code

February 17, 2017 admin Corporate, Events, Exploits, Mark Loman, RSA Conference 2017

Credit to Author: Bill Brenner| Date: Fri, 17 Feb 2017 18:12:34 +0000

In the latest installment of live videos beaming directly from San Fransisco Sophos security scribe Bill Brenner chats to Mark Loman, director of engineering for next-generation tech at Sophos, about how nation-state attackers meticulously craft their attack code to evade the most advanced security products. (If you haven’t read our pre-RSA Conference Q&A with Mark, why not catch […]

MalwareBytes Security

A look back at the Zyns iframer campaign

January 31, 2017 admin campaign, eitest, exploit kits, Exploits, iframe, malvertising, malware, ransomware, Threat analysis, Zyns iframer

Behind compromised sites or malvertising, you will often find trails that can take you back years and see how infection chains evolved, or didn’t, over time.

Categories:

Tags: campaign eitest exploit kits iframe malvertising malware ransomware Zyns iframer

(Read more…)

Microsoft Security

Hardening Windows 10 with zero-day exploit mitigations

January 23, 2017 admin Advanced persistent threats, cyberattack defense, Exploits, Microsoft Edge, STRONTIUM APT, Uncategorized, Windows 10, Windows Defender ATP, Zero day exploit

Cyberattacks involving zero-day exploits happen from time to time, affecting different platforms and applications. Over the years, Microsoft security teams have been working extremely hard to address these attacks. While delivering innovative solutions like Windows Defender Application Guard, which provides a safe virtualized layer for the Microsoft Edge browser, and Windows Defender Advanced Threat Protection,…

Microsoft Security

Exploit kits remain a cybercrime staple against outdated software – 2016 threat landscape review series

January 23, 2017 admin Angler Exploit Kit, Antimalware research for IT pros and enthusiasts, Axpergle exploit kit, exploit kits, Exploits, Meadgive exploit kit, Microsoft Edge, ransomware, RIG exploit kit, steganography, sundown exploit kit, Windows 10, Windows Defender, Windows Defender ATP, zero-day exploit kit

Despite the disruption of Axpergle (Angler), which dominated the landscape in early 2016, exploit kits as a whole continued to be a threat to PCs running unpatched software. Some of the most prominent threats, from malvertising to ransomware, used exploit kits to infect millions of computers worldwide in 2016. The prevalence of exploit kits as an…

Microsoft Security

Twin zero-day attacks: PROMETHIUM and NEODYMIUM target individuals in Europe

January 23, 2017 admin Advanced persistent threats, Antimalware research for IT pros and enthusiasts, APT, Exploits, NEODYMIUM, PROMETHIUM, Targeted attack, Windows 10, Windows Defender, Windows Defender ATP, Zero day exploit

Targeted attacks are typically carried out against individuals to obtain intellectual property and other valuable data from target organizations. These individuals are either directly in possession of the targeted information or are able to connect to networks where the information resides. Microsoft researchers have encountered twin threat activity groups that appear to target individuals for…

Microsoft Security

No slowdown in Cerber ransomware activity as 2016 draws to a close

January 23, 2017 admin Antimalware research for IT pros and enthusiasts, Cerber, Donoff, Exploits, holiday shopping, macro, Macro-based malware, Meadgive, ransomware, spam, Windows 10, Windows Defender, Windows Defender ATP

As everybody else winds down for the holidays, the cybercriminals behind Cerber are busy ramping up their operations. Following our discovery of a spam campaign that takes advantage of holiday shopping, we found two new campaigns that continue distributing the latest variants of Cerber ransomware. These campaigns are the latest in a series of persistent cybercriminal…

Microsoft Security

Our commitment to our customers’ security

January 23, 2017 admin Advanced persistent threats, Antimalware research for IT pros and enthusiasts, Coordinated Malware Eradication, CVE-2016-7855, Elevation of privileges, Exploits, Microsoft Edge, Microsoft Edge on Windows 10, Microsoft Threat Intelligence, Microsoft's post-breach detection approach, post-breach, STRONTIUM APT, Terry Myerson's blog, Windows 10, Windows Defender ATP, Windows Defender ATP detects STRONTIUM

This guest blog post is by Terry Myerson / Executive Vice President, Windows and Devices Group Windows is the only platform with a customer commitment to investigate reported security issues and proactively update impacted devices as soon as possible. And we take this responsibility very seriously. Recently, the activity group that Microsoft Threat Intelligence calls STRONTIUM…