Tag: Mandiant
-
Global attacker median dwell time continues to fall
While the use of zero-day exploits is on the rise, Mandiant’s M-Trends 2024 report reveals a significant improvement in global …
-
Mandiant: Orgs are detecting cybercriminals faster than ever
The average time taken by global organizations to detect cyberattacks has dropped to its lowest-ever level of ten days, Mandiant revealed …
-
Google Mandiant report finds surprising fall in time to detect cyber intrusions
Global median dwell time, the average amount of time that attackers remain undetected on a target’s network after gaining unauthorized …
-
Russia’s Sandworm Upgraded to APT44 by Google’s Mandiant
The Russian-backed threat actor known as Sandworm has become such a prominent ally of the Kremlin in the Ukraine war that Mandiant has …
-
Mandiant links Russia’s Sandworm hacking group to water infrastructure breaches
The Google LLC unit also changed the codename it uses to track the hacking group. Mandiant will refer to Sandstorm as APT44 going forward, …
-
Zero-day exploitation surged in 2023, Google finds
2023 saw attackers increasingly focusing on the discovery and exploitation of zero-day vulnerabilities in third-party libraries (libvpx, …
-
Spyware and zero-day exploits increasingly go hand-in-hand, researchers find
Researchers tracking the exploitation of previously undisclosed vulnerabilities found that commercial spyware firms are increasingly …
-
APT29 hit German political parties with bogus invites and malware
APT29 (aka Cozy Bear, aka Midnight Blizzard) has been spotted targeting German political parties for the first time, Mandiant researchers …
-
Russian Hackers Use ‘WINELOADER’ Malware to Target German Political Parties
The WINELOADER backdoor used in recent cyber attacks targeting diplomatic entities with wine-tasting phishing lures has been attributed as …
-
Photos: BSidesZagreb 2024
BSidesZagreb is a complimentary, non-profit conference driven by community participation, designed for information security professionals …
-
State-sponsored hackers know enterprise VPN appliances inside out
Suspected Chinese state-sponsored hackers who have been leveraging Ivanti Connect Secure VPN flaws to breach a variety of organizations …
-
ScreenConnect flaws exploited to deliver all kinds of malware (CVE-2024-1709, CVE-2024-1708)
The recently patched vulnerabilities (CVE-2024-1709, CVE-2024-1708) in ConnectWise ScreenConnect software are being exploited by numerous …
●●●