Author: Kelly Sheridan Staff Editor

Mandiant experts discuss the novel techniques used to evade detection, automate data theft, and achieve persistent access. Source: Darkreading Attacks Breaches

A team of Microsoft researchers developed and trained a Siamese Neural Network to detect brand impersonation attacks. Source: Darkreading Attacks Breaches

Candiru sold spyware that exploited Windows vulnerabilities and had been used in attacks against dissidents, activists, and journalists. Source: Darkreading Attacks Breaches

As attackers use more synthetic media in social engineering campaigns, a new framework is built to describe threats and provide countermeasures. Source: Darkreading Attacks Breaches

Experts discuss the meaning of action bias and how it presents a threat to IT security leaders, practitioners, and users. Source: Darkreading Attacks Breaches

Some ransomware attackers use virtual machines to bypass security detection, but adoption is slow for the complicated technique. Source: Darkreading Attacks Breaches

Security researchers find ransomware operators rely less on email and more on criminal groups for initial access into target networks. Source: Darkreading Attacks Breaches

Attackers had used the cloud-based infrastructure to target mailboxes and add forwarding rules to learn about financial transactions. Source: Darkreading Attacks Breaches

The group has re-emerged after a brief hiatus with a new email campaign threatening a DDoS attack against businesses that don’t pay ransom. Source: Darkreading Attacks Breaches

The move follows last week’s disclosure of an ongoing attack designed to mimic emails from the US Agency for International Development. Source: Darkreading Attacks Breaches