Enterprise Security

Indonesian E-Learning Platform Reportedly Targeted in Cybersecurity Incident

News

Indonesian E-Learning Platform Reportedly Targeted in Cybersecurity Incident

Reports indicate that a prominent Indonesian educational technology platform may have been the target of a cybersecurity...

Strengthening Defenses Against Identity-Based Cyber Attacks

News

Strengthening Defenses Against Identity-Based Cyber Attacks

Identity-based attacks remain one of the most pervasive threats in cybersecurity, leveraging stolen or compromised credentials to...

VanHelsing RaaS Emerges: Double Extortion, Multi-OS Targeting, and $5K Entry Fee

APT-News

VanHelsing RaaS Emerges: Double Extortion, Multi-OS Targeting, and $5K Entry Fee

A new ransomware-as-a-service (RaaS) operation dubbed “VanHelsing” has surfaced, targeting multiple operating systems and employing double extortion...

NIST SP 800-82r3: Strengthening OT Security with Dragos and NP-View Integration

News

NIST SP 800-82r3: Strengthening OT Security with Dragos and NP-View Integration

The latest revision of NIST SP 800-82 (r3) provides critical guidance for securing Operational Technology (OT) systems,...

XE Group’s Cybercrime Evolution: From Credit Card Skimming to Zero-Day Exploitation

APT-News

XE Group’s Cybercrime Evolution: From Credit Card Skimming to Zero-Day Exploitation

The XE Group, a cybercrime syndicate with suspected Vietnamese origins, has dramatically evolved its operations from traditional...

Active Directory Security: Exploiting and Mitigating GenericWrite DACL Vulnerabilities

Blue-Team

Active Directory Security: Exploiting and Mitigating GenericWrite DACL Vulnerabilities

Active Directory’s Discretionary Access Control Lists (DACLs) serve as fundamental security mechanisms governing object permissions within directory...

Active Directory Security: Detecting and Mitigating WriteDacl Abuse Risks

Blue-Team

Active Directory Security: Detecting and Mitigating WriteDacl Abuse Risks

Active Directory Discretionary Access Control Lists (DACLs) serve as a fundamental security mechanism governing access to directory...

Active Directory Security Testing with Netexec: A Red Team Perspective

Red-Team

Active Directory Security Testing with Netexec: A Red Team Perspective

Active Directory penetration testing remains a cornerstone of enterprise security assessments, with tools like Netexec providing robust...

Active Directory Security: Detecting and Mitigating WriteOwner Permission Abuse

News

Active Directory Security: Detecting and Mitigating WriteOwner Permission Abuse

Misconfigured WriteOwner permissions in Active Directory can enable attackers to take ownership of critical objects, bypass security...

Active Directory Security Risk: Exploiting AddSelf Permissions for Privilege Escalation

News

Active Directory Security Risk: Exploiting AddSelf Permissions for Privilege Escalation

A critical misconfiguration in Active Directory’s Discretionary Access Control Lists (DACLs) allows attackers to abuse the AddSelf...

Diamond Ticket Attacks: The Stealthy Kerberos Exploit Targeting Active Directory

Red-Team

Diamond Ticket Attacks: The Stealthy Kerberos Exploit Targeting Active Directory

The Diamond Ticket attack represents an advanced exploitation technique targeting Active Directory environments by manipulating Kerberos authentication...

Kerberos Username Enumeration: Detection and Mitigation Strategies for Enterprise Security Teams

Blue-Team

Kerberos Username Enumeration: Detection and Mitigation Strategies for Enterprise Security Teams

Kerberos pre-authentication brute-force attacks pose a significant risk to Active Directory environments, enabling attackers to identify valid...

Active Directory Security: Mitigating Risks from Pre-Windows 2000 Compatibility Weaknesses

Blue-Team

Active Directory Security: Mitigating Risks from Pre-Windows 2000 Compatibility Weaknesses

Legacy configurations in Active Directory (AD) often introduce security vulnerabilities, and one of the most persistent risks...

Shadow Credentials Attack: Exploiting Active Directory for Stealthy Privilege Escalation

Blue-Team

Shadow Credentials Attack: Exploiting Active Directory for Stealthy Privilege Escalation

A Shadow Credentials attack is an advanced exploitation technique targeting Active Directory Certificate Services (AD CS), enabling...

GhostPack: Red Team Tactics for Active Directory Exploitation and Defense

Red-Team

GhostPack: Red Team Tactics for Active Directory Exploitation and Defense

Active Directory (AD) remains a prime target for attackers due to its central role in enterprise authentication...

Autonomous SOC Revolution: How AI is Transforming Cybersecurity Defense

Blue-Team

Autonomous SOC Revolution: How AI is Transforming Cybersecurity Defense

The security operations center (SOC) is undergoing a radical transformation through AI and cloud-native detection technologies. Traditional...

Ransom.MSIL.THANOS.THABGBA: A Low-Prevalence but High-Impact Ransomware Threat

Malware Analysis

Ransom.MSIL.THANOS.THABGBA: A Low-Prevalence but High-Impact Ransomware Threat

Ransom.MSIL.THANOS.THABGBA is a ransomware strain targeting Windows systems, classified as a low-risk threat due to its limited...

ASTROLOCKER Ransomware: Technical Analysis of a Mount Locker Affiliate Strain

Malware Analysis

ASTROLOCKER Ransomware: Technical Analysis of a Mount Locker Affiliate Strain

Ransom.Win32.ASTROLOCKER.A represents a lesser-known but technically sophisticated ransomware strain with potential ties to the Mount Locker operation....

Understanding Trojan.Win32.CVE20188120.E: A Windows Privilege Escalation Threat

CVE News

Understanding Trojan.Win32.CVE20188120.E: A Windows Privilege Escalation Threat

The Trojan.Win32.CVE20188120.E malware represents a persistent threat leveraging CVE-2018-8120, a privilege escalation vulnerability in Windows systems. This...

Ransom.Win32.SODINOKIBI.YABGC: Technical Analysis of a REvil Ransomware Variant Targeting Windows Systems

Malware Analysis

Ransom.Win32.SODINOKIBI.YABGC: Technical Analysis of a REvil Ransomware Variant Targeting Windows Systems

The ransomware variant Ransom.Win32.SODINOKIBI.YABGC (a member of the REvil/Sodinokibi family) poses a significant threat to Windows environments...

Posts pagination

Previous 1 2 3 4 Next

Enterprise Security

Indonesian E-Learning Platform Reportedly Targeted in Cybersecurity Incident

Strengthening Defenses Against Identity-Based Cyber Attacks

VanHelsing RaaS Emerges: Double Extortion, Multi-OS Targeting, and $5K Entry Fee

NIST SP 800-82r3: Strengthening OT Security with Dragos and NP-View Integration

XE Group’s Cybercrime Evolution: From Credit Card Skimming to Zero-Day Exploitation

Active Directory Security: Exploiting and Mitigating GenericWrite DACL Vulnerabilities

Active Directory Security: Detecting and Mitigating WriteDacl Abuse Risks

Active Directory Security Testing with Netexec: A Red Team Perspective

Active Directory Security: Detecting and Mitigating WriteOwner Permission Abuse

Active Directory Security Risk: Exploiting AddSelf Permissions for Privilege Escalation

Diamond Ticket Attacks: The Stealthy Kerberos Exploit Targeting Active Directory

Kerberos Username Enumeration: Detection and Mitigation Strategies for Enterprise Security Teams

Active Directory Security: Mitigating Risks from Pre-Windows 2000 Compatibility Weaknesses

Shadow Credentials Attack: Exploiting Active Directory for Stealthy Privilege Escalation

GhostPack: Red Team Tactics for Active Directory Exploitation and Defense

Ransom.MSIL.THANOS.THABGBA: A Low-Prevalence but High-Impact Ransomware Threat

ASTROLOCKER Ransomware: Technical Analysis of a Mount Locker Affiliate Strain

Understanding Trojan.Win32.CVE20188120.E: A Windows Privilege Escalation Threat

Ransom.Win32.SODINOKIBI.YABGC: Technical Analysis of a REvil Ransomware Variant Targeting Windows Systems

You may have missed

Trump Administration Considers TikTok Deal Allowing Chinese Algorithm Ownership

How Intezer’s AI SOC Balances Automation with Human Expertise

How Security Platformization Improves Threat Response and Operational Efficiency

World Backup Day: Essential Strategies for Enterprise Data Protection