Threat Intelligence – Page 12 – Computer Security Articles

Credit to Author: Threat Intelligence Team| Date: Wed, 13 Jul 2022 16:17:09 +0000

While the war in Ukraine still rages, various threat actors continue to launch cyber attacks against its government entities. In this blog we review the latest campaign from the UAC-0056 threat group.

The post Cobalt Strikes again: UAC-0056 continues to target Ukraine in its latest campaign appeared first on Malwarebytes Labs.

MalwareBytes Security

July 1, 2022 admin

Ransomware review: June 2022

Credit to Author: Threat Intelligence Team| Date: Fri, 01 Jul 2022 21:40:25 +0000

LockBit remained the most active threat in June, and “the costliest strain of ransomware ever documented” went dark while others surged.

The post Ransomware review: June 2022 appeared first on Malwarebytes Labs.

MalwareBytes Security

June 21, 2022 admin

Russia’s APT28 uses fear of nuclear war to spread Follina docs in Ukraine

Credit to Author: Threat Intelligence Team| Date: Tue, 21 Jun 2022 15:25:09 +0000

Threat actors associated with Russian intelligence are using the fear or nuclear war to spread data-stealing malware in Ukraine.

The post Russia’s APT28 uses fear of nuclear war to spread Follina docs in Ukraine appeared first on Malwarebytes Labs.

MalwareBytes Security

June 20, 2022 admin

Client-side Magecart attacks still around, but more covert

Credit to Author: Threat Intelligence Team| Date: Mon, 20 Jun 2022 21:21:04 +0000

While we have heard less about web skimming attacks, attacks are still going on, but more quietly than before.

The post Client-side Magecart attacks still around, but more covert appeared first on Malwarebytes Labs.

MalwareBytes Security

June 13, 2022 admin

Taking down the IP2Scam tech support campaign

Credit to Author: Threat Intelligence Team| Date: Mon, 13 Jun 2022 17:41:16 +0000

Tech support scams follow a simple business model that has not changed much over the years. After all, why change a recipe that continues to yield large profits. We see countless such campaigns and block them indiscriminately to protect our customers from being defrauded by a fraudulent tech support agent over the phone. Every now…

The post Taking down the IP2Scam tech support campaign appeared first on Malwarebytes Labs.

MalwareBytes Security

June 8, 2022 admin

MakeMoney malvertising campaign adds fake update template

Credit to Author: Threat Intelligence Team| Date: Wed, 08 Jun 2022 21:33:04 +0000

We catch up with some old acquaintances that just aren’t ready to hang up the towel just yet.

The post MakeMoney malvertising campaign adds fake update template appeared first on Malwarebytes Labs.

MalwareBytes Security

June 3, 2022 admin

Ransomware: May 2022 review

Credit to Author: Threat Intelligence Team| Date: Fri, 03 Jun 2022 16:54:10 +0000

May 2022 saw the continued dominance of LockBit, and a possible disbursement of the Conti gang into other ransomware groups.

The post Ransomware: May 2022 review appeared first on Malwarebytes Labs.

Microsoft Security

June 1, 2022 admin

Using Python to unearth a goldmine of threat intelligence from leaked chat logs

Credit to Author: Paul Oliveria| Date: Wed, 01 Jun 2022 18:00:00 +0000

Dealing with a great amount of data can be time consuming, thus using Python can be very powerful to help analysts sort information and extract the most relevant data for their investigation. The open-source tools library, MSTICpy, for example, is a Python tool dedicated to threat intelligence. It aims to help threat analysts acquire, enrich, analyze, and visualize data.

The post Using Python to unearth a goldmine of threat intelligence from leaked chat logs appeared first on Microsoft Security Blog.