CERT alerts Information about malicious e-mails against Banks in the Middle East In the first week of May 2016, FireEye’s DTI identified a wave of emails containing malicious attachments being sent to multiple banks in the Middle East region.
CERT alerts Information about operation Ke3chang Little has been published on the threat actors responsible for Operation Ke3chang since the report was released more than two years ago. However, Unit 42 has recently discovered the actors have continued to evolve their custom malware arsenal.
CERT alerts Information about Suckfly attacks targeting Indian organizations In March 2016, Symantec published a blog on Suckfly, an advanced cyberespionage group that conducted attacks against a number of South Korean organizations to steal digital certificates.
CERT alerts Exploring CVE-2015-2545 This report, available at TLP:GREEN to researchers and network defenders, gives an overview of different attacks using CVE-2015-2545.
Regulations GDPR regulation (in English) REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data
Regulations GDPR regulation (in Hungarian) AZ EURÓPAI PARLAMENT ÉS A TANÁCS (EU) 2016/679 RENDELETE (2016. április 27.) a természetes személyeknek a személyes adatok kezelése tekintetében történő védelméről és az ilyen adatok szabad áramlásáról
CERT alerts Information about two Windows variants of Derusbi malware To follow up on the March report on the discovery of a 64-bit Linux variant of Derusbi used in the Turbo campaign, this post covers our analysis of two unique Windows variants of the Derusbi PGV_PVID malware.
CERT alerts Information about Prince of Persia: Infy malware Attack campaigns that have very limited scope often remain hidden for years. If only a few malware samples are deployed, it’s less likely that security industry researchers will identify and connect them together.
FireEye Beyond the bottom line: the real cost of data breaches FireEye commissioned independent technology market researchspecialist Vanson Bourne to undertake the research upon which thisreport is based.
McAfee Report may 2016 During Intel Security’s RSA keynote on March 1, Chris Young discussed an important cybersecurity challenge: the dearth of truly effective models and alliances for sharing threat intelligence
Microsoft MS Security Bulletin Summary may 2016 This bulletin summary lists security bulletins released for May 2016.
CERT alerts Information about malware attacking the Bangladesh Bank's SWIFT payment system In February 2016 one of the largest cyber heists was committed and subsequently disclosed. An unknown attacker gained access to the Bangladesh Bank’s (BB) SWIFT payment system
CERT alerts Information about The Ghost Dragon APT group Cylance SPEAR™ has identified an APT group which deploys multiple customized malware implants, targeting mainly Chinese and Russian users.
CERT alerts Information about a cyber-attack facilitator in the Netherlands A small web hosting provider with servers in the Netherlands and Romania has been a hotbed of targeted attacks and advanced persistent threats (APT) since early 2015. Starting from May 2015 till today we counted over 100 serious cyber attacks that originated from servers of this small provider.
Microsoft MS Security Bulletin Summary april 2016 This bulletin summary lists security bulletins released for April 2016.
Symantec Symantec Internet Security Threat Report 2016 Symantec discovered more than 430 million new unique pieces of malware in2015, up 36 percent from the year before. Perhaps what is most remarkableis that these numbers no longer surprise us.
CERT alerts Information about Suckfly, a China-based APT group that uses stolen codesigning certificates While code-signing certificates can offer more security, they can also live an unintended secret life providing cover for attack groups, such as the Suckfly APT group.
CERT alerts Information about a longrunning espionage campaign against the Tibetan community This report describes the latest iteration in a longrunning espionage campaign against the Tibetan community.
McAfee Report march 2016 The full force of winter is upon us—at least those of us in the Northern Hemisphere—and it is clear that the bad guys have been keeping themselves very busy while stuck indoors.
Microsoft MS Security Bulletin Summary march 2016 This bulletin summary lists security bulletins released for March 2016.
CERT alerts Information about operation DustStorm an APT against numerous major industries across Japan , South-Korea, US, Europe and several Southeast Asian countries Cylance SPEAR has uncovered a long-standing persistent threat targeting numerous major industries spread across Japan, South Korea, the UnitedStates, Europe, and several other Southeast Asian countries.
CERT alerts Information about the Posseidon Group targeted attack against different companies During the latter part of 2015, Kaspersky researchers from GReAT (Global Research and Analysis Team) got hold of the missing pieces of an intricate puzzle that points to the dawn of the first Portuguesespeaking targeted attack group, named “Poseidon.”
CERT alerts Information about attack on French Diplomat We observed a targeted attack in November directed at an individual working for the French Ministry of Foreign Affairs. The attack involved a spearphishing email sent to a single French diplomat based in Taipei, Taiwan and contained an invitation to a Science and Technology support group event.
CERT alerts Changelog of Emissary trojan In December 2015, Unit 42 published a blog about a cyber espionage attack using the Emissary Trojan as a payload. Emissary is related to the Elise Trojan and the Operation Lotus Blossom attack campaign, which prompted us to start collecting additional samples of Emissary.
Microsoft MS Security Bulletin Summary february 2016 This bulletin summary lists security bulletins released for February 2016.
