Displaying items by tag: Recorded Future

A seasoned ransomware threat researcher has warned against taking any of the chatter around the disappearance of the Windows REvil ransomware group for a second time seriously, given that the forums on which these posts have appeared are heavily monitored.

The CIA has invested US$1.6 million (A$2.2 million) in the company behind the secure messaging app Wickr, through its investment arm In-Q-Tel, the American website Motherboard reports, citing public disclosure records as a source.

A CIA-backed threat intelligence firm claims the operator of the DarkSide ransomware gang has lost control of its infrastructure after the malware was used to attack the Colonial Pipeline Company in the US which runs the country's biggest petrol pipeline.

In what appears to be a first, a CIA-bankrolled threat intelligence firm has set up a "tech news" outlet to spread its wares.

Most people in the infosec industry are adamant that attribution is the most difficult part of the process, but Romanian security firm Bitdefender's Daniel Clayton is an exception. The vice-president of global services and support said this was not really the case.

BitDefender and Recorded Future say the promise of "contextualised security intelligence" will drive "superior cybersecurity decision making and operational efficiency for enterprises and managed security service providers", so what are the details?

The Indian Government has said a power outage in Mumbai last year was caused by human error, adding that no evidence exists to connect the incident to a "hacking attempt".

CIA-backed threat intelligence firm Recorded Future has issued a document in which it claims that a China-linked group named RedEcho is targeting the Indian power industry. That's the meaning from the headline which is very definitive.

A threat group sponsored by China allegedly hacked into the Vatican, the Catholic Diocese of Hong Kong and a number of related organisations in May, the CIA-backed threat intelligence firm Recorded Future claims.

Threat intelligence outfit Recorded Future says it has discovered new malware that operates as a ransomware builder for the Microsoft Windows platform.

Microsoft was targeted by eight of the top ten vulnerabilities in 2018, a study by the security intelligence firm Recorded Future has found.

New clauses in China's cyber security laws give the Ministry of Public Security broad powers to carry out on-site of remote inspections of the computer networks of any company with five or more machines connected to the Internet, the security intelligence firm Recorded Future claims.

A security researcher has questioned the attribution of a cyber-espionage campaign to the group known as APT10, which has long been suspected to be operating with patronage from China, pointing out instead that the activity that had been classed as APT10 was more likely attributable to another group, APT31 aka Zirconium.

Security intelligence firm Recorded Future claims to have discovered the most likely source of a collection of data from breaches stretching back years; given the moniker Collection #1, it was disclosed recently by security professional Troy Hunt and said to contain 773 million email addresses and corresponding passwords.

Chinese attackers have been targeting an engineering company based in Britain re-using tactics, techniques and procedures from the Russian threat groups Dragonfly and APT28, the threat intelligence firm Recorded Future claims.

Security firm Recorded Future claims it has found proof-of-concept code on the code repository GitHub that can be used to easily exploit the recently discovered flaw in the Apache Struts Web framework.

Chinese state-sponsored attackers appear to be carrying out network reconnaissance of several organisations in Alaska, Nairobi, Kenya and Germany, using the assets of an elite university, the security firm Recorded Future claims.

Malicious attackers have launched a Windows ransomware attack on the servers of the PGA of America golf tournament which began at the Bellerive County Club in St Louis on Thursday.

There are no universal standards for a vulnerability database but the US national vulnerability database was the first to be set up and has set the norms for others, a researcher at the threat intelligence firm Recorded Future says.

A statement by the head of security firm FireEye that US government spooks produce "nice" malware when compared to that of other states has been reported by the American tech news website Cyberscoop – and allowed to pass unchallenged.