October 21, 2024 at 11:30AM Attacks on exposed Docker Remote API servers deploy the perfctl malware through probing and payload execution. Attackers create containers, execute Base64 encoded payloads, and use evasion tactics to avoid detection. Recommendations to enhance security include strong access controls, regular monitoring, and adherence to container security best practices. ### Meeting Takeaways … Read more
May 20, 2024 at 04:26PM HP Inc. released its quarterly HP Wolf Security Threat Insights Report, highlighting cyber attackers’ tactics of using open redirects, overdue invoice lures, and Living-off-the-Land techniques to evade defenses. Notable campaigns included ‘Cat-Phishing’ through open redirects, abuse of Windows BITS, and HTML smuggling attacks. HP emphasized the value of threat containment … Read more
April 21, 2024 at 11:52AM Coveware’s report reveals a record low of 28% of companies paying ransom in Q1 2024. Although the payment rate has decreased, the total amount paid to ransomware actors reached $1.1 billion last year. Remote access and vulnerability exploitation are key infiltration methods, with law enforcement operations impacting ransomware affiliates. Akira … Read more
January 31, 2024 at 07:42AM Israeli startup Aim Security raised $10 million for AI technology that secures the deployment of generative-AI utilities. Backed by YL Ventures and Cyber Club London, the company aims to provide oversight and control over AI-powered enterprise apps. It addresses the rise of ungoverned “Shadow AI tools” and the challenges they … Read more