SEARCH
Archive
Microsoft Mines Events Logs for RDP Brute-Force Attacks
Microsoft looked at Windows Events Log to understand what RDP brute-force attacks looked like in the enterprise, and found that attackers frequently space out the login attempts over several days to avoid detection.
New ZeroCleare Wiper Malware Used in Targeted Attacks
The new ZeroCleare malware has been used in destructive attacks against energy companies in the Middle East.
DHS Warns of New North Korean Government Malware Hoplight
The DHS and FBI say North Korean-backed attackers are using a powerful new piece of malware known as Hoplight to infiltrate target machines.
Russian Attackers Used Iranian Infrastructure and Tools Against Multiple Targets
Investigations by the NSA and Uk's NCSC found that the Russian Turla attack group was using compromised C2 infrastructure and tools belonging to an Iranian APT group in several operations.
FIN7 Attackers Roll Out New Tools
The FIN7 group has begun deploying new tools, including a module that specifically targets a remote administration tool for payment card systems.