My account

News

Delaware, USA – September 16, 2019 – The second-largest radio company in the United States became another victim of a ransomware attack, adversaries demand half a million dollars for the decryptor. The incident occurred about a week ago, but Entercom Communications Corporation did not disclose the details of the attack. During the attack, all company […]

Delaware, USA – September 13, 2019 – The new infostealer exfiltrates documents containing keywords in the file name and has a number of similarities with Ryuk ransomware. This week, MalwareHunterTeam discovered an interesting sample that searches an infected system for the financial and military-related Word and Excel files and then sends them to the attackers’ […]

Delaware, USA – September 12, 2019 – SOC Prime team will join Motiv ICT Security on October 1, 2019 for the first SOC Experience Day. The event gathers security experts and leaders to network and discuss practical approach on how to Predict, Prevent, Detect and Respond to cyber attacks. SOC Experience Day will be held […]

Delaware, USA – September 11, 2019 – As Google and Mozilla bring the widespread use of DNS over the HTTPS protocol, more malware authors also adopt this perfect opportunity to hide malicious traffic. Proofpoint researchers discovered that PsiXBot started to abuse Google’s DoH service to retrieve the IPs for the command-and-control infrastructure in mid-August. The […]

Delaware, USA – September 10, 2019 – State-sponsored group Stealth Falcon is known for targeted attacks on journalists and political activists with sophisticated malware. The group has been active since 2012, and researchers associate its activities with Project Raven campaign conducted by former NSA employees. ESET discovered another tool of the group that has been […]

Delaware, USA – September 9, 2019 – Lilocked ransomware appeared on the radars of researchers a month and a half ago, in early August the number of attacks began to grow, and since then more than 6,000 servers have been infected. It is not known for certain how the infection process occurs, but adversaries get […]

Delaware, USA – September 6, 2019 – Just two weeks after revealing vulnerability details at the Black Hat USA security conference, Chinese cyberespionage group APT5 started to search and attack vulnerable VPN servers from Pulse Secure and Fortinet. According to ZDNet, the adversaries exploit CVE-2019-11510 and CVE-2018-13379, which allow an unauthorized user to receive files […]

Delaware, USA – September 5, 2019 – Glupteba malware is learning new tricks to stay afloat. The malware has been active since at least 2011 and has been used to steal credentials and redirect web traffic to malicious content. Cybercriminals distributing Glupteba most recently mine cryptocurrency and provide proxy services to other hacking groups. Since […]

Delaware, USA – September 4, 2019 – SOC Prime, Inc. announces the release of Premium Log Source Pack for Elastic Common Schema (ECS) that provides essential log telemetry across all 12 Tactics of MITRE ATT&CK. ECS is a specification that facilitates the analysis of data from diverse sources and provides a consistent and customizable way […]

Delaware, USA – September 3, 2019 – Astaroth malware authors continue experiments with abusing legitimate tools and services to deploy the trojan and hide their traces after infection. Following the recent disclosure of the infection chain, attackers have significantly altered the delivery mechanism and launched a new campaign. Security researcher Marcel Afrahim discovered the misuse […]