TRITON Attacker Disrupts ICS Operations, While Botching Attempt to Cause Physical Damage

Cyberattacks that cause physical damage to critical infrastructure—like the Stuxnet campaign that destroyed nearly 1,000 centrifuges at an Iranian uranium enrichment facility in 2010—have been relatively rare because of how difficult they are to carry out. That may be changing. A threat actor with possible nation-state backing recently disrupted operations at a critical infrastructure facility […]

A few cybersecurity predictions for 2018

Over the past few weeks, dozens of people have reached out to Jon Oltsik, an ESG senior principal analyst and the founder of the firm’s cybersecurity service, with their cybersecurity predictions for 2018. Some prophecies are fairly obvious (ransomware will continue in 2018), while at the other extreme, some people are pushing doomsday forecasts aimed […]

Script-based attacks and overall malware on the rise

Research revealed massive increases in scripting attacks and overall malware attempts against midsize companies throughout Q3 2017. In fact, WatchGuard Technologies found that scripting threats accounted for 68 percent of all malware during the period. The findings reinforce expectations of continued growth of new malware and various attack techniques in the coming months, further emphasizing […]

Microsoft Issues Emergency Patch for ‘Critical’ Flaw in Windows Security

Microsoft recently issued an emergency patch for its major Windows malware protection tool that fixes a critical vulnerability discovered by the UK’s National Cyber Security Centre (NCSC), an arm of the Government Communications Headquarters (GCHQ) intelligence agency. The remote code execution vulnerability (CVE-2017-11937) in the Microsoft Malware Protection Engine would allow an attacker to gain […]

Conficker: The Worm That Won’t Die

The Conficker worm has become the malware that just won’t die. More than nine years after it was first spotted in 2008, the worm continues to be detected by anti-malware systems with enough regularity to suggest that it remains a potent threat for organizations, especially those in the manufacturing, healthcare, and government sectors. In a report released […]

Attacker ‘Dwell Time’ Average Dips Slightly to 86 Days

It now takes an organization just under three months on average to detect hackers embedded in their network, a modest improvement over years past. That’s one of the takeaways from data culled from 100 incident response investigations conducted by CrowdStrike this year. The security firm’s newly published Cyber Intrusion Services Casebook 2017 shows that organizations […]

What is a botnet? And why they aren’t going away anytime soon

Botnets act as a force multiplier for individual attackers, cyber-criminal groups, and nation-states looking to disrupt or break into their targets’ systems. By definition, they are a collection of any type of internet-connected device that an attacker has compromised. Commonly used in distributed denial of service (DDoS) attacks, botnets can also take advantage of their collective […]

FBI, Europol, Microsoft, ESET Team Up, Dismantle One of World’s Largest Malware Operations

A pervasive and long-running malware operation that used more than 460 different botnets and infected more than 1.1 million computers a month has been derailed in a yearlong operation by global law enforcement and cybersecurity vendors. The FBI, Europol’s European Cybercrime Center, Joint Cybercrime Action Task Force (J-CAT), Eurojust, and Germany’s Luneburg Central Criminal Investigation […]

The next step in network security evolution

In 1987, Bernd Fix developed a method to neutralize the Vienna virus, becoming the first known antivirus software developer. In 2017, as we pass the 30-year anniversary, a lot has changed in endpoint security. Harry Sverdlove, CTO at Edgewise Networks, has been fortunate enough to have a front row seat to this evolution, and he […]

More Than One Quarter of Ransomware Attacks Target Businesses

In 2017, 26.2 percent of ransomware targets were business users, compared to 22.6 percent in 2016. This is due in part to three unprecedented ransomware attacks targeting corporate networks that forever changed the landscape of this increasingly virulent threat, which Kaspersky Lab has named its key topic for 2017. The year 2017 will be remembered as a time […]