Bad ad fad leads to IcedID, Gozi infections
Credit to Author: Matt Wixey| Date: Thu, 20 Jul 2023 10:00:07 +0000
Malvertising campaigns using paid ads result in infostealer and backdoor attacks
Read moresophos x-ops
Microsoft Revokes Malicious Drivers in Patch Tuesday Culling
Credit to Author: Andrew Brandt| Date: Tue, 11 Jul 2023 17:20:38 +0000
In December 2022, Microsoft published their monthly Windows Update packages that included an advisory about malicious drivers, signed by Microsoft and other code-signing authorities, that Sophos X-Ops (and others) observed threat actors abusing during attacks. Today, Microsoft issued Security Advisory ADV230001 as part of their July Windows Update that addresses Sophos’ discovery of more than […]
Read moreAnd I Shall Call It Mini-Me GPT: Using Large Language Models to Classify the Uncharted Web
Credit to Author: gallagherseanm| Date: Thu, 22 Jun 2023 11:30:10 +0000
Sophos AI team employs GPT and other large language models as teachers to train smaller models to label websites.
Read moreThe Phantom Menace: Brute Ratel remains rare and targeted
Credit to Author: gallagherseanm| Date: Thu, 18 May 2023 11:00:58 +0000
The commercial attack tool’s use by bad actors has faded after an initial flurry, while Cobalt Strike remains the go-to post-exploitation tool for many.
Read more“FleeceGPT” mobile apps target AI-curious to rake in cash
Credit to Author: Jagadeesh Chandraiah| Date: Wed, 17 May 2023 10:00:36 +0000
Interest in OpenAI’s latest version of its interactive language model has spurred a new wave of scam apps looking to cash in on the hype
Read moreA doubled “Dragon Breath” adds new air to DLL sideloading attacks
Credit to Author: Gabor Szappanos| Date: Wed, 03 May 2023 10:00:12 +0000
Exploits of the venerable vulnerability gain in complexity
Read moreEverything Everywhere All At Once: The 2023 Active Adversary Report for Business Leaders
Credit to Author: Angela Gunn| Date: Tue, 25 Apr 2023 10:00:03 +0000
A deep dive into over 150 incident-response cases reveals both attackers and defenders picking up the pace
Read more‘AuKill’ EDR killer malware abuses Process Explorer driver
Credit to Author: Andrew Brandt| Date: Wed, 19 Apr 2023 10:00:43 +0000
Driver based attacks against security products are on the rise
Read more