Infosec products of the month: April 2022

Here’s a look at the most interesting products from the past month, featuring releases from: Akamai, Alert Logic, Arcanna.ai, Axis Security, BigID, BreachBits, ColorTokens, Finite State, Forescout, Fortinet, Hillstone Networks, IBM, Imperva, Keysight T… Continue reading Infosec products of the month: April 2022

Prevailion ARKTOS allows companies to test their network security against real world malware threats

Prevailion launched ARKTOS, a malware replication platform that allows companies to safely test their network security readiness against the world’s most challenging early-stage malware. “Precursor attacks are one of the biggest failures in corporate s… Continue reading Prevailion ARKTOS allows companies to test their network security against real world malware threats

Prevailion Omega exposes previously undetected malware blind spots in the cloud

Prevailion launched Omega, a new cybersecurity capability for enterprises and governments that exposes and validates previously undetected active malware compromises – including ransomware – across cloud deployments and remote workforce ass… Continue reading Prevailion Omega exposes previously undetected malware blind spots in the cloud

Prevailion Omega exposes previously undetected malware blind spots in the cloud

Prevailion launched Omega, a new cybersecurity capability for enterprises and governments that exposes and validates previously undetected active malware compromises – including ransomware – across cloud deployments and remote workforce ass… Continue reading Prevailion Omega exposes previously undetected malware blind spots in the cloud

Accenture invests in Prevailion to provide clients with early warning of cyber threats

Accenture has made a strategic investment, through Accenture Ventures, in Prevailion, a next-generation cyber intelligence company that provides clients with expansive visibility into malware across their organization and supply chains with early detec… Continue reading Accenture invests in Prevailion to provide clients with early warning of cyber threats

Prevailion’s program offers transparency on corporate breaches for compliance and auditing pros

Corporate network breaches are happening all the time, but finding out about them can be difficult for anyone outside of the company. This lack of transparency poses a significant problem for many interested parties, but it’s particularly challenging f… Continue reading Prevailion’s program offers transparency on corporate breaches for compliance and auditing pros

How hackers are updating the EVILNUM malware to target the global financial sector

Hackers behind a series of targeted financial attacks have been updating their malware to better evade detection over the last year, according to new Prevailion research slated to be published Wednesday. Since at least February 2019, the hackers, who have begun impersonating CEOs and banks in their lure documents, have introduced at least seven updates to the malicious software known as EVILNUM, which enables attackers to upload and download files, harvest tracking cookies, and run arbitrary commands. While internet scammers frequently masquerade as corporate executives to tempt victims into clicking on malware, attackers behind EVILNUM are rapidly working to make their tools more obscure. The unknown attackers began rolling out the newest version of the EVILNUM malware three days ago. By press time, the hacking tool only was detected by eight of the 59 vendors on VirusTotal, a malware-sharing repository indicating many common software security vendors are not capable of […]

The post How hackers are updating the EVILNUM malware to target the global financial sector appeared first on CyberScoop.

Continue reading How hackers are updating the EVILNUM malware to target the global financial sector

Free trojanized WordPress themes lead to widespread compromise of web servers

Over 20,000 web servers (and who knows how many websites) have been compromised via trojanized WordPress themes to deliver malware through malicious ads, Prevailion researchers have discovered. The compromised servers are located across the globe and m… Continue reading Free trojanized WordPress themes lead to widespread compromise of web servers

North Korean hackers target U.S. entities amid stalled denuclearization talks

A hacking group with ties to North Korea has been targeting U.S. entities with malicious documents as it works to hide its tracks better, according to research from Maryland-based cybersecurity firm Prevailion. The group has started placing its malware in obscure file formats, namely Kodak FlashPix (FPX) files, to evade antivirus detection products, according to Danny Adamitis, Prevailion’s director of intelligence analysis. The FPX files are embedded in Microsoft Word documents that are sent to victims, which are then launched via macro commands. Since FPX file formats are less likely to be detected than standard Visual Basic for Applications (VBA) files, Adamitis believes the North Korean hackers are exploiting that gap to push their attacks past anti-virus detection. Prevailion links — with moderate confidence — the action to a group known as Kimsuky or Smoke Screen. The attackers have been sending trojanized documents to victims that discuss nuclear deterrence, North […]

The post North Korean hackers target U.S. entities amid stalled denuclearization talks appeared first on CyberScoop.

Continue reading North Korean hackers target U.S. entities amid stalled denuclearization talks