Tag: IoC
-
Unit 42: Auto-Color: An Emerging and Evasive Linux Backdoor
Source URL: https://unit42.paloaltonetworks.com/?p=138356 Source: Unit 42 Title: Auto-Color: An Emerging and Evasive Linux Backdoor Feedly Summary: The new Linux malware named Auto-color uses advanced evasion tactics. Discovered by Unit 42, this article cover its installation, evasion features and more. The post Auto-Color: An Emerging and Evasive Linux Backdoor appeared first on Unit 42. AI Summary…
-
CSA: How Is AI Transforming SOCs from Reactive to Proactive?
Source URL: https://cloudsecurityalliance.org/articles/transforming-socs-with-ai-from-reactive-to-proactive-security Source: CSA Title: How Is AI Transforming SOCs from Reactive to Proactive? Feedly Summary: AI Summary and Description: Yes **Summary:** The text discusses the modernization of Security Operation Centers (SOCs) through the integration of generative AI technologies and Managed Detection and Response (MDR) services. It emphasizes the shift from reactive to proactive…
-
The Register: US minerals company says crooks broke into email and helped themselves to $500K
Source URL: https://www.theregister.com/2025/02/20/niocorp_bec_scam/ Source: The Register Title: US minerals company says crooks broke into email and helped themselves to $500K Feedly Summary: A painful loss for young company that’s yet to generate revenue A NASDAQ-listed US minerals company says cybercriminals broke into its systems on Valentine’s Day and paid themselves around $500,000 – money earmarked…
-
Unit 42: Stately Taurus Activity in Southeast Asia Links to Bookworm Malware
Source URL: https://unit42.paloaltonetworks.com/?p=138311 Source: Unit 42 Title: Stately Taurus Activity in Southeast Asia Links to Bookworm Malware Feedly Summary: Unit 42 details the just-discovered connection between threat group Stately Taurus (aka Mustang Panda) and the malware Bookworm, found during analysis of the group’s infrastructure. The post Stately Taurus Activity in Southeast Asia Links to Bookworm…
-
The Register: Ghost ransomware crew continues to haunt IT depts with scarily bad infosec
Source URL: https://www.theregister.com/2025/02/20/fbi_beware_of_ghost_ransomware/ Source: The Register Title: Ghost ransomware crew continues to haunt IT depts with scarily bad infosec Feedly Summary: FBI and CISA issue reminder – deep sigh – about the importance of patching and backups The operators of Ghost ransomware continue to claim victims and score payments, but keeping the crooks at bay…
-
Alerts: CISA and Partners Release Advisory on Ghost (Cring) Ransomware
Source URL: https://www.cisa.gov/news-events/alerts/2025/02/19/cisa-and-partners-release-advisory-ghost-cring-ransomware Source: Alerts Title: CISA and Partners Release Advisory on Ghost (Cring) Ransomware Feedly Summary: Today, CISA—in partnership with the Federal Bureau of Investigation (FBI) and Multi-State Information Sharing and Analysis Center (MS-ISAC)—released a joint Cybersecurity Advisory, #StopRansomware: Ghost (Cring) Ransomware. This advisory provides network defenders with indicators of compromise (IOCs), tactics, techniques,…