October 19, 2020  |  VoiceAmerica, George Rettas

Inside the World of Threat Intelligence Operations

Most people understand the role that intelligence operations play in government organizations. For instance, most people have a general idea of what three letter agencies like the CIA and the NSA do for the United States. But why do Fortune 500 Companies need Threat Intelligence Operations? The Sr. Director of Cyber Intelligence…
Read More

October 9, 2020  |  eSecurity Planet , Kyle Guercio

Top Threat Intelligence Platforms for 2020

Threat Intelligence Platforms (TIP) are critical security tools that use global security data to help proactively identify, mitigate and remediate security threats. New and continually evolving threats are surfacing every day. While security analysts know the key to staying ahead of these threats is to analyze data on them, the…
Read More

October 8, 2020  |  SC Magazine, Joe Uchill

Companies opting out of DHS threat-sharing platform call for better data

Since its inception in 2016, the Department of Homeland Security’s threat-sharing platform has been plagued by a lack of participation from public and private organizations alike. DHS is now vowing to make improvements, as the security community calls for better quality of data and more tangible payback for opting in.
Read More

October 6, 2020  |  Enterprise Channels MEA, Khaled Chatila

Building contextual security awareness outside and inside of business

The Middle East represents one of the most vibrant economies in the world while promising to be a cradle of innovation for decades to come. This is not lost on cybercriminals, who continue to hammer the region’s businesses with ongoing attacks. With the emergence of bold initiatives such as NEOM in Saudi Arabia and other…
Read More

October 3, 2020  |  The Cyberwire

Smaug: Ransomware-as-a-service drag(s)on

Threat actors and cybercriminals that don’t have the ability to develop their own ransomware for malicious campaigns can turn to the Smaug Ransomware as a Service (RaaS) offering, which is available via a Dark Web Onion site. At least two threat actors are operating the site, providing ransomware that can be used to target…
Read More

October 1, 2020  |  Intezer, Nicole Fishbein and Avigayil Mechtinger

A Storm is Brewing: IPStorm Now Has Linux Malware

The development of cross-platform malware is not new, however, we continue to observe a number of malware that were previously documented only targeting Windows now targeting the Linux platform. One of these threats is IPStorm. In May 2019, researchers from Anomali discovered a new Golang malware targeting Windows, which they…
Read More

October 1, 2020  |  ZDNet, Catalin Cimpanu

IPStorm botnet expands from Windows to Android, Mac, and Linux

IPStorm, a malware botnet that was first spotted last year targeting Windows systems, has evolved to infect other types of platforms, such as Android, Linux, and Mac devices. Furthermore, the botnet has also quadrupled in size, growing from around 3,000 infected systems in May 2019 to more than 13,500 devices this month. These…
Read More

October 1, 2020  |  Bandura Cyber

“Imagine That” Why More States Should Follow Oklahoma’s Threat Intel Lead

The State of Oklahoma recently announced it would be deploying a statewide threat intelligence platform to share cyber threat intelligence across agencies, municipalities, and police departments. The goal is to improve its ability to detect pandemic-related cyber attacks, unemployment fraud, and attempts to compromise remote…
Read More

October 1, 2020  |  Barracuda, Erez Turjeman

Threat Spotlight: New InterPlanetary Storm variant targeting IoT devices

The cybercriminal organization behind the InterPlanetary Storm malware has released a new variant into the wild, now targeting Mac and Android devices in addition to Windows and Linux machines. The malware is building a botnet, which Barracuda researchers estimate currently includes roughly 13,500 infected machines located in 84…
Read More

September 25, 2020  |  Government Technology, Lucas Ropek

Oklahoma Partners with Anomali on Threat Intelligence

Oklahoma has announced the procurement of a statewide threat intelligence sharing platform, giving its Office of Management and Enterprise Services (OMES) a new tool by which to improve its overall cybersecurity posture. OMES's new partnership is with security vendor Anomali, whose flagship platform ThreatStream will help…
Read More