October 1, 2024 at 01:27AM Cybersecurity researchers have uncovered a new cryptojacking campaign targeting the Docker Engine API, enabling attackers to co-opt instances into a malicious Docker Swarm. The attacks leverage Docker for access, spawning a cryptocurrency miner, and orchestrating lateral movement to related hosts. The campaign also demonstrates the use of evolving malware and … Read more
February 20, 2024 at 06:27AM In 2023, the Scattered Spider threat group conducted impactful ransomware attacks on major financial institutions. Silverfort’s threat research team responded with a real-time playbook. A webinar will detail their response to the attack, focusing on key response goals and insights into addressing various dimensions of lateral movement. Limited spots are … Read more
February 2, 2024 at 08:07AM Cloudflare was impacted by the Okta supply-chain attack last fall, with cyberattackers accessing their internal systems. The attackers, reportedly a nation-state, sought widespread access to Cloudflare’s global network. While limited source code and documentation were accessed, no customer data or systems were compromised due to network segmentation and security measures. … Read more
November 20, 2023 at 10:12AM Silverfort is the first unified identity protection platform that integrates with existing identity and access management solutions to protect organizations from identity-based attacks. The platform offers features such as Risk-Based Authentication and Multi-Factor Authentication (MFA) and can protect a wide range of resources, including command-line tools and service accounts. A … Read more
November 1, 2023 at 02:49PM Threat actors are targeting government, technical, and legal organizations globally by exploiting the ‘Citrix Bleed’ vulnerability (CVE-2023-4966) in Citrix NetScaler ADC and Gateway appliances. The attacks have been ongoing since August 2023 and involve credential theft and lateral movement. The attacks are difficult to detect due to limited forensic evidence. … Read more