RSS

Equifax Breach: The News We All Dreaded to Hear.

  Today, Equifax, which is in the business of supplying credit information on consumers from many countries, disclosed a cyber breach that took place from mid May through July 2017. […]

September 8, 2017 by Mounir Hahad

How to Achieve Faster Incident Response at a Lower Cost

Dark Reading published an interesting article recently, highlighting a growing conundrum facing many large organizations today.  That is, the pace of investments in cybersecurity solutions is being constrained by the […]

August 22, 2017 by Franklyn Jones

Stop Ignoring Dwell Time – It Will Cost You Big Time

Cyber threat actors are constantly developing new Tools, Techniques and Procedure (TTP) to break your first line of defense offered by firewalls, intrusion prevention system, email and web security gateways […]

August 10, 2017 by Suba Pandian

Spear Phishing: from ZIP to ISO Attachments

As early as May 2017, we’ve seen spear phishing campaigns that use ISO file type as an attachment to emails. That is a good alternative for zip in delivering malware […]

August 7, 2017 by Joe Dela Cruz

Russian Intrusion into Critical US Infrastructure: Did the US Ignore Critical Warning Signs? Will it Continue to Ignore Them?

We’ve seen this spring and summer how hackers have been targeting nuclear power plants in the US. Since May, a dozen power plants, including the Wolf Creek nuclear facility in […]

July 27, 2017 by Nick Bilogorskiy

NotPetya: A Ransomware Wave on the Wake of WannaCry

On June 27, we have seen yet another wave of ransomware with worm spreading capability hit various countries around the world. This one, dubbed PetrWrap, seem to be similar to Petya […]

June 30, 2017 by Cyphort Labs

Turf War Erupts Between Cryptocurrency Miners

Cyphort has been monitoring how threat actors are exploiting computing resources from compromised victims to mine various cryptocurrency. In our latest discovery, it seems these threat actors are aware of […]

June 15, 2017 by Mounir Hahad

Russian Intrusion into Critical US Infrastructure: Did the US Ignore Critical Warning Signs? Will it Continue to Ignore Them?

We’ve seen this spring and summer how hackers have been targeting nuclear power plants in the US. Since May, a dozen power plants, including the Wolf Creek nuclear facility in […]

July 27, 2017 by Nick Bilogorskiy

Avoid Security Alert Fatigue: Simplify and Accelerate Your Incident Response

An FBI report released last year estimated 327,374 robberies nationwide, which accounted for an estimated loss of $390 million. Cyber theft is not far different from the physical theft but […]

June 13, 2017 by Suba Pandian

Samba CVE-2017-7494 Getting Exploited in the Wild, Distributing Bitcoin Miners

In our continuous monitoring of threats in the wild, Cyphort Labs has detected multiple exploitation attempts using the recently disclosed Samba vulnerability CVE-2017-7494. The threat actors probably belong to some cyber […]

June 12, 2017 by Alex Burt

Why UEBA Might Have Sent Johnny to Jail

Strange title, I know. But hang with me. In my previous blog, I mentioned three research projects that Cyphort recently completed, which revealed growing dissatisfaction among SIEM users. Their two […]

May 23, 2017 by Franklyn Jones

See the Anti-SIEM in Action.

Schedule a live demo at your convenience, and we’ll present the detection, analytics, and mitigation capabilities of the platform.