In the News | Anomali

May 28, 2021  |  US News & World Report, Paul D. Shinkman

Russia Ramps Up Cyberattacks in Ukraine Amid Fears of War

Private intelligence firm Anomali on Monday also identified a conspicuous rise in cyberattacks by Russian or Russian-backed groups since at least January. A hacking group known as "Primitive Bear" or "Gamaredon," which has a history of targeting Ukraine, conducted a campaign targeting Ukrainian government…
Read More

May 28, 2021  |  Datamation, Samuel Greengard

Best Threat Intelligence Platforms for 2021

Anomali offers a robust platform for threat intelligence. It consolidates threat management and automates detection of risks with a set of tools that collect, manage, integrate, investigate and share data within an organization and from outside. The platform is available for on-premises and cloud-native deployments and includes…
Read More

May 13, 2021  |  Bleeping Computer, Sergiu Gatlan

Microsoft build tool abused to deliver password-stealing malware

As Anomali's Threat Research team observed, the malicious MSBuild project files delivered in this campaign bundled encoded executables and shellcode the threat actors used for injecting the final payloads into the memory of newly spawned processes.
Read More

April 19, 2021  |  CyberScoop, Tim Starks

‘Gamaredon’ hackers target Ukrainian officials amid rising Russian tensions

“This one is interesting because the alignment of real world events is just another indication of potential hybrid warfare that Russia is known to engage in,” said Gage Mele, lead cyber threat intelligence analyst at Anomali.
Read More

April 12, 2021  |  Security Brief, Asia, Newsdesk

Anomali picks up pace on APJ expansion with exec appointment

Cybersecurity firm Anomali has appointed channel sales specialist Stree Naidu to lead its business across Asia Pacific and Japan (APJ), including Australia and New Zealand. As Anomali’s senior vice president and general manager for APJ, Naidu will be responsible for overseeing the company’s operations in the region. He…
Read More

April 10, 2021  |  The Cyberwire, Podcast

Strategic titles point to something more than a commodity campaign

Guests Gage Mele, Winston Marydasan, and Yury Polozov from Anomali join Dave to discuss their research into Static Kitten targeting government agencies in the UAE and Kuwait.
Read More

April 7, 2021  |  Help-Net Security, Helga Labus

How do I select an attack detection solution for my business?

Ahmed Rubaie, CEO, Anomali: XDR at furst glance may not seem like a “capability.” However, security is about to experience a major movement into Extended Detection and Response (XDR), which will mark a new era in attack detection and response. Any technologies you invest in should recognize this imminent trend.
Read More

April 7, 2021  |  MSSP Alert, Joe Panettieri

Cybersecurity Partnerships, Strategic Alliances and Integrations

Managed Detection and Response (MDR): Castra has deployed the Anomali ThreatStream threat intelligence platform (TIP) to expand visibility over adversaries, support threat hunting activities, and speed response capabilities for all of its MDR customers, the companies say.
Read More

April 6, 2021  |  The Cyberwire, Staff

Malware droppers posing as video game cheats. Bahamut may be behind new cyberespionage campaign. North Korea continues targeting security researchers.

Anomali suspects "with low confidence" that the hacker-for-hire cyberespionage group Bahamut is responsible for a campaign targeting entities in the Middle East and South Asia. The threat actor used spearphishing emails to deliver malicious Word files, beginning in June 2020 through at least February 2021.
Read More

April 5, 2021  |  CyberScoop, Sean Lyngaas

Suspected Chinese spies cover tracks in efforts to breach Vietnamese government

Security firm Anomali said last year that another group of China-linked hackers had tried to break into a Vietnamese government data center.
Read More