Hackers Using Microsoft Build Engine to Deliver Malware Filelessly
Threat actors are abusing Microsoft Build Engine (MSBuild) to filelessly deliver remote access trojans and password-stealing malware on targeted Windows systems. The actively ongoing campaign is said to have emerged…
DarkSide explained: The ransomware group responsible for Colonial Pipeline attack
Updated: The group’s existence is tied to a murky web of shorted stocks, criminality, and failed attempts to appear as Robin Hood. Read more from the Source
Report to Your Management with the Definitive ‘Incident Response for Management’ Presentation Template
Security incidents occur. It’s not a matter of ‘if’ but of ‘when.’ There are security products and procedures that were implemented to optimize the IR process, so from the ‘security-professional’…
Podcast 117: Cyber Attack on Colonial Pipeline Affects Fuel Availability in 17 States
A ransomware attack on Colonial Pipeline affected fuel availability in 17 southeastern US states, and Bloomberg reported that Colonial Pipeline paid $5 million to DarkSide, a Russian ransomware service provider.…