CERT alerts Information about Threat Group-4127 targeting Hillary Clinton presidential campaign SecureWorks® Counter Threat Unit™ (CTU) researchers track the activities of Threat Group-4127[1] (TG-4127), which targets governments, military, and international non-governmental organizations (NGOs).
CERT alerts Information about new Sofacy attacks against US Government Agency The Sofacy group, also known as APT28, is a well-known threat group that frequently conducts cyber espionage campaigns. Recently, Unit 42 identified a spear phishing e-mail from the Sofacy group that targeted the United States government.
CERT alerts Information about a breach to Democratic National Committe the formal governing body of the US Democratic Party There is rarely a dull day at CrowdStrike where we are not detecting or responding to a breach at a company somewhere around the globe. In all of these cases, we operate under strict confidentiality rules with our customers and cannot reveal publicly any information about these attacks.
CERT alerts Information about spear phishing e-mails targeting Indian government officials On May 18, 2016, FireEye Labs observed a suspected Pakistan-based APT group sending spear phishing emails to Indian government officials.
CERT alerts Information about Irongate malware masking malicious activity on SCADA systems In the latter half of 2015, the FireEye Labs Advanced Reverse Engineering (FLARE) team identified several versions of an ICS-focused malware crafted to manipulate a specific industrial process running within a simulated Siemens control system environment.
Microsoft MS Security Bulletin Summary june 2016 This bulletin summary lists security bulletins released for June 2016.
CERT alerts Information about IXESHE rerivative IHEATE that targets users in America Since 2012, we’ve been keeping an eye on the IXESHE targeted attack campaign. Since its inception in 2009, the campaign has primarily targeted governments and companies in East Asia and Germany.
CERT alerts Information about malicious e-mails against Banks in the Middle East In the first week of May 2016, FireEye’s DTI identified a wave of emails containing malicious attachments being sent to multiple banks in the Middle East region.
CERT alerts Information about operation Ke3chang Little has been published on the threat actors responsible for Operation Ke3chang since the report was released more than two years ago. However, Unit 42 has recently discovered the actors have continued to evolve their custom malware arsenal.
CERT alerts Information about Suckfly attacks targeting Indian organizations In March 2016, Symantec published a blog on Suckfly, an advanced cyberespionage group that conducted attacks against a number of South Korean organizations to steal digital certificates.
CERT alerts Exploring CVE-2015-2545 This report, available at TLP:GREEN to researchers and network defenders, gives an overview of different attacks using CVE-2015-2545.
Regulations GDPR regulation (in English) REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data
Regulations GDPR regulation (in Hungarian) AZ EURÓPAI PARLAMENT ÉS A TANÁCS (EU) 2016/679 RENDELETE (2016. április 27.) a természetes személyeknek a személyes adatok kezelése tekintetében történő védelméről és az ilyen adatok szabad áramlásáról
CERT alerts Information about two Windows variants of Derusbi malware To follow up on the March report on the discovery of a 64-bit Linux variant of Derusbi used in the Turbo campaign, this post covers our analysis of two unique Windows variants of the Derusbi PGV_PVID malware.
CERT alerts Information about Prince of Persia: Infy malware Attack campaigns that have very limited scope often remain hidden for years. If only a few malware samples are deployed, it’s less likely that security industry researchers will identify and connect them together.
FireEye Beyond the bottom line: the real cost of data breaches FireEye commissioned independent technology market researchspecialist Vanson Bourne to undertake the research upon which thisreport is based.
McAfee Report may 2016 During Intel Security’s RSA keynote on March 1, Chris Young discussed an important cybersecurity challenge: the dearth of truly effective models and alliances for sharing threat intelligence
Microsoft MS Security Bulletin Summary may 2016 This bulletin summary lists security bulletins released for May 2016.
CERT alerts Information about malware attacking the Bangladesh Bank's SWIFT payment system In February 2016 one of the largest cyber heists was committed and subsequently disclosed. An unknown attacker gained access to the Bangladesh Bank’s (BB) SWIFT payment system
CERT alerts Information about The Ghost Dragon APT group Cylance SPEAR™ has identified an APT group which deploys multiple customized malware implants, targeting mainly Chinese and Russian users.
CERT alerts Information about a cyber-attack facilitator in the Netherlands A small web hosting provider with servers in the Netherlands and Romania has been a hotbed of targeted attacks and advanced persistent threats (APT) since early 2015. Starting from May 2015 till today we counted over 100 serious cyber attacks that originated from servers of this small provider.
Microsoft MS Security Bulletin Summary april 2016 This bulletin summary lists security bulletins released for April 2016.
Symantec Symantec Internet Security Threat Report 2016 Symantec discovered more than 430 million new unique pieces of malware in2015, up 36 percent from the year before. Perhaps what is most remarkableis that these numbers no longer surprise us.
CERT alerts Information about Suckfly, a China-based APT group that uses stolen codesigning certificates While code-signing certificates can offer more security, they can also live an unintended secret life providing cover for attack groups, such as the Suckfly APT group.
CERT alerts Information about a longrunning espionage campaign against the Tibetan community This report describes the latest iteration in a longrunning espionage campaign against the Tibetan community.
