HackDig : Dig high-quality web security articles

New DOJ Team Focuses on Ransomware and Cryptocurrency Crime

While no security officer would rely on this alone, it’s good to know the U.S. Department of Justice is increasing efforts to fight cyber crime. According to a recent address in Munich by Deputy Attorney General Lisa Monaco, new efforts will focus on ransomware and cryptocurrency incidents. This makes sense since the X-Force Threat Intelligence Index
Publish At:2022-05-09 10:09 | Read:1351 | Comments:0 | Tags:Advanced Threats Banking & Finance Data Protection Fraud Pro

What Are the Biggest Phishing Trends Today?

According to the 2022 X-Force Threat Intelligence Index, phishing was the most common way that cyber criminals got inside an organization. Typically, they do so to launch a much larger attack such as ransomware. The Index also found that phishing was used in 41% of the attacks that X-Force remediated in 2021. That’s a 33% increase from 2021.  One
Publish At:2022-04-28 10:09 | Read:1558 | Comments:0 | Tags:Data Protection Fraud Protection Identity & Access Incident

Top Security Concerns When Accepting Crypto Payment

From Microsoft to AT&T to Home Depot, more companies are accepting cryptocurrency as a way to pay for products and services. This makes perfect sense as crypto coins are a viable revenue source. Perhaps the time is ripe for businesses to learn how to receive, process and convert crypto payments into fiat currency. Still, many questions remain. How can y
Publish At:2022-04-19 10:09 | Read:816 | Comments:0 | Tags:Banking & Finance Data Protection Fraud Protection Risk Mana

NFT Security Risks: Old Scams and New Tricks

!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" "http://www.w3.org/TR/REC-html40/loose.dtd"> The non-fungible token (NFT) boom has also led to some serious security incidents. For example, the number of suspicious-looking domain registrations with names of NFT stores increased nearly 300% in March 2021.   To participate in an NFT marke
Publish At:2022-04-06 10:09 | Read:901 | Comments:0 | Tags:Cloud Security Data Protection Fraud Protection Risk Managem

2022 Banking & Finance Security Intelligence Roundup

!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" "http://www.w3.org/TR/REC-html40/loose.dtd"> The banking and finance industries deliver more services online now than ever before due to the pandemic. As a result, banking cybersecurity became more important than ever this year. Some of the threats to big data security in recent years included rans
Publish At:2022-03-31 10:08 | Read:759 | Comments:0 | Tags:Banking & Finance Fraud Protection Banking Banking Malware B

TrickBot Gang Uses Template-Based Metaprogramming in Bazar Malware

Malware authors use various techniques to obfuscate their code and protect against reverse engineering. Techniques such as control flow obfuscation using Obfuscator-LLVM and encryption are often observed in malware samples. This post describes a specific technique that involves what is known as metaprogramming, or more specifically template-based metaprogra
Publish At:2022-02-02 14:03 | Read:2003 | Comments:0 | Tags:Endpoint Fraud Protection Malware Threat Research IBM X-Forc

TrickBot Bolsters Layered Defenses to Prevent Injection Research

This post was written with contributions from IBM X-Force’s Limor Kessem and Charlotte Hammond. The cyber crime gang that operates the TrickBot Trojan, as well as other malware and ransomware attacks, has been escalating activity. As part of that escalation, malware injections have been fitted with added protection to keep researchers out and get thro
Publish At:2022-01-24 10:07 | Read:5333 | Comments:0 | Tags:Banking & Finance Fraud Protection Security Services Threat

7 Holiday Cybersecurity Tips to Try Before The Year Ends

The holiday rush is upon us, and so is the risk of cyberattack. Threat actors often get to work during the holidays. IT staff is heading out for vacation, and everyone is in a hurry. This means we might skimp on security. Still, there are some holiday cybersecurity tips that will help make the season go smoothly.    End of Year and Christmas
Publish At:2021-12-06 14:02 | Read:3099 | Comments:0 | Tags:Data Protection Fraud Protection Identity & Access Incident

How the Rise in Cyberattacks Is Changing Consumer Behavior

If a store you visit often suffers a cyberattack, you might feel like someone went through your wallet. This kind of attack or data breach, and this kind of feeling, isn’t new. The growing frequency, cost and impact of cyberattacks are new — and consumers notice. Consumers are more aware of attacks than ever before. After all, they affect the pu
Publish At:2021-11-29 17:57 | Read:3123 | Comments:0 | Tags:Data Protection Fraud Protection Incident Response Risk Mana

BrazKing Android Malware Upgraded and Targeting Brazilian Banks

Nethanella Messer and James Kilner contributed to the technical editing of this blog. IBM Trusteer researchers continually analyze financial fraud attacks in the online realms. In recent research into mobile banking malware, we delved into the BrazKing malware’s inner workings following a sample found by MalwareHunterTeam. BrazKing is an Android banki
Publish At:2021-11-17 10:05 | Read:3229 | Comments:0 | Tags:Mobile Security Application Security Banking & Finance Fraud

Identity and Access Management: What’s Driving the Rush?

A recent Fortune Business Insights report projects that the global Identity and Access Management (IAM) market (valued at $9.53 billion in 2018) will reach $24.76 billion by the end of 2026, showing a CAGR of 13.17%. What’s behind this massive demand? In a nutshell, people don’t want their identities stolen. But the real drivers are growing regu
Publish At:2021-10-28 17:20 | Read:1938 | Comments:0 | Tags:Fraud Protection Identity & Access Risk Management Cloud Ide

How Shopping Bots Can Compromise Retail Cybersecurity

Online shopping bots are not new to the e-commerce world. Stores use bots to offer better customer service, but malicious bots can cause major harm to a business. These pose cybersecurity risks to e-commerce retailers and consumers alike. Some customers use shopping bots to execute automated tasks based on a set of instructions, such as log onto website -&g
Publish At:2021-10-28 15:28 | Read:1414 | Comments:0 | Tags:Application Security Data Protection Fraud Protection Identi

What Is Proactive Cybersecurity?

Most organizations take what you might call an active approach to cybersecurity, They’re prepared to do certain things once an attack happens. Or, they take a reactive approach, taking action after an attack is completed. A proactive cybersecurity strategy is about acting before any attack occurs; it’s a good cybersecurity posture of readiness.&
Publish At:2021-10-20 15:27 | Read:1881 | Comments:0 | Tags:Data Protection Fraud Protection Risk Management Security Se

What Happens to Victims When a Ransomware Gang Vanishes?

Not long after launching a major supply chain attack in July 2021, the REvil ransomware gang went offline. The group’s infrastructure, including its surface and dark web portals used for ransom negotiations and data leaks, shut down on July 12, according to Bleeping Computer. Russian digital crime forum XSS banned Unknown, a user believed to have be
Publish At:2021-10-05 15:27 | Read:3520 | Comments:0 | Tags:Endpoint Fraud Protection Incident Response Malware Security

New ZE Loader Targets Online Banking Users

IBM Trusteer closely follows developments in the financial cyber crime arena. Recently, we discovered a new remote overlay malware that is more persistent and more sophisticated than most current-day codes. In this post we will dive into the technical details of the sample we worked on and present ZE Loader’s capabilities and features. The parts that
Publish At:2021-09-23 12:37 | Read:3501 | Comments:0 | Tags:Banking & Finance Endpoint Fraud Protection Identity & Acces

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud