Threat Management

Women are increasingly taking on top roles within Russian-speaking threat actor groups.

China’s campaign against U.S. telecoms has been ongoing for years.

Threat actors are hiring freelance pentesters to improve the effectiveness of their ransomware attacks

Aside from primarily leveraging basic usernames for their accounts, organizations impacted by ransomware intrusions from July to September — including those in the government and healthcare industries — also mostly failed to implement multi-factor authentication that could have deterred brute-force attacks.

Huntress researchers describe two SafePay ransomware incidents resulting in file encryption and exfiltration.

Group-IB says the "RustyAttr" trojan could potentially be used in future attacks once the attackers make it more robust.

Researchers say the Iranian threat actors impersonated the North Koreans to hide their activities.

Data within the unsecured database included military personnel and their supporters' full names, images, mailing addresses, locations, images, Social Security numbers, and National Insurance numbers, a report by cybersecurity researcher Jeremy Fowler published on vpnMentor showed.

A proposed amendment would exclude legitimate security research from the definition of data espionage.

Alexander “Connor” Moucka, 26, is accused of stealing data from Ticketmaster, AT&T and more.