AiTM Phishing Attacks: Keeping Up with Attacker TTPs
Attackers are turning up the heat with advanced TTPs like Adversary-in-the-Middle (AiTM) phishing attacks to steal session cookies and bypass MFA security.
Threat intelligence is information and data which cybersecurity professionals use to prepare for, as well as to detect and protect organizations and end users from cyber attacks carried out by malicious threat actors.
Actionable threat data pertaining to an organization’s information systems, networks, or digital assets is intended to inform cybersecurity and threat teams about potential risks and existing or emerging threats. As cybercriminals continue to grow more sophisticated in their attack tactics, gathering and leveraging threat data is a critical element to protecting your infrastructure and assets against cyber attacks and building a proactive, rather than reactive, cyber defense strategy.
OSINT vs Commercial Threat Intelligence
OSINT vs Commercial Threat Intelligence – A high level overview weighing the pros and cons for each type of threat feed.
Firewall-as-a-Service: Next-Gen Firewall for the SASE Framework
As we explore the critical role of data in powering the SASE solutions suite, this post focuses on the Firewall-as-a-Service for Next-Gen Firewall functionality in the cloud.
Extending Threat Protection to Cloud Applications with CASBs
DNS Filtering and SWGs can offer core security functionality but the SASE framework requires CASBs to extend threat protection to cloud apps.
Baiting Attackers to Identify Malicious Payloads Like CoinMiners
This post illustrates how you can leverage the threat intel from honeypots to identify malicious payloads like CoinMiners to block cryptojacking attempts.
Threat Alert: Active USPS Phishing Attack
Threat Alert: zvelo’s PhishBlocklist identifies a very active USPS phishing attack using personalized URLs that target USPS customers.
In-House Cyber Threat Intelligence Begs a Multi-Million Dollar Question
Ingesting threat feeds to build in-house cyber threat intel solutions will prove to be a costly mistake for most. Do you have what it takes?
zvelo Releases Predictive Phishing Detection
zvelo announced predictive phishing detection enhancements that will help cyber defenders to predict and block phishing campaigns.
Emotet’s Return Foreshadows Surge in Ransomware
Commonly used by eCrime groups like Wizard Spider, the return of Emotet foreshadows a potential surge in ransomware attacks.
Threat Alert: Log4j Vulnerability Update
Threat Update: The Log4j vulnerability continues to be actively exploited. Immediate action to update and monitor potentially impacted systems is advised.