In the News
May 28, 2021 | US News & World Report, Paul D. Shinkman
Russia Ramps Up Cyberattacks in Ukraine Amid Fears of War
Private intelligence firm Anomali on Monday also identified a conspicuous rise in cyberattacks by Russian or Russian-backed groups since at least January. A hacking group known as "Primitive Bear" or "Gamaredon," which has a history of targeting Ukraine, conducted a campaign targeting Ukrainian government…
Read More
May 28, 2021 | Datamation, Samuel Greengard
Best Threat Intelligence Platforms for 2021
Anomali offers a robust platform for threat intelligence. It consolidates threat management and automates detection of risks with a set of tools that collect, manage, integrate, investigate and share data within an organization and from outside. The platform is available for on-premises and cloud-native deployments and includes…
Read More
May 13, 2021 | Bleeping Computer, Sergiu Gatlan
Microsoft build tool abused to deliver password-stealing malware
As Anomali's Threat Research team observed, the malicious MSBuild project files delivered in this campaign bundled encoded executables and shellcode the threat actors used for injecting the final payloads into the memory of newly spawned processes.
Read More
April 19, 2021 | CyberScoop, Tim Starks
‘Gamaredon’ hackers target Ukrainian officials amid rising Russian tensions
“This one is interesting because the alignment of real world events is just another indication of potential hybrid warfare that Russia is known to engage in,” said Gage Mele, lead cyber threat intelligence analyst at Anomali.
Read More
April 12, 2021 | Security Brief, Asia, Newsdesk
Anomali picks up pace on APJ expansion with exec appointment
Cybersecurity firm Anomali has appointed channel sales specialist Stree Naidu to lead its business across Asia Pacific and Japan (APJ), including Australia and New Zealand. As Anomali’s senior vice president and general manager for APJ, Naidu will be responsible for overseeing the company’s operations in the region. He…
Read More
April 10, 2021 | The Cyberwire, Podcast
Strategic titles point to something more than a commodity campaign
Guests Gage Mele, Winston Marydasan, and Yury Polozov from Anomali join Dave to discuss their research into Static Kitten targeting government agencies in the UAE and Kuwait.
Read More
April 7, 2021 | Help-Net Security, Helga Labus
How do I select an attack detection solution for my business?
Ahmed Rubaie, CEO, Anomali: XDR at furst glance may not seem like a “capability.” However, security is about to experience a major movement into Extended Detection and Response (XDR), which will mark a new era in attack detection and response. Any technologies you invest in should recognize this imminent trend.
Read More
April 7, 2021 | MSSP Alert, Joe Panettieri
Cybersecurity Partnerships, Strategic Alliances and Integrations
Managed Detection and Response (MDR): Castra has deployed the Anomali ThreatStream threat intelligence platform (TIP) to expand visibility over adversaries, support threat hunting activities, and speed response capabilities for all of its MDR customers, the companies say.
Read More
April 6, 2021 | The Cyberwire, Staff
Malware droppers posing as video game cheats. Bahamut may be behind new cyberespionage campaign. North Korea continues targeting security researchers.
Anomali suspects "with low confidence" that the hacker-for-hire cyberespionage group Bahamut is responsible for a campaign targeting entities in the Middle East and South Asia. The threat actor used spearphishing emails to deliver malicious Word files, beginning in June 2020 through at least February 2021.
Read More
April 5, 2021 | CyberScoop, Sean Lyngaas
Suspected Chinese spies cover tracks in efforts to breach Vietnamese government
Security firm Anomali said last year that another group of China-linked hackers had tried to break into a Vietnamese government data center.
Read More