This cyber threat analysis from one of our in-house senior cyber defense experts, Luis M. Ponce De Leon, distills critical cybersecurity insights from the DeepSeas crew on May 3, 2024, emphasizing vulnerabilities and cyber threats relevant to corporate security infrastructures, as well as emerging cyber threats. The primary concerns include
May 2024 is coming in like a lion, bringing to light several key cybersecurity issues demanding quick action from professionals across several industries. One of our senior cyber defense experts at DeepSeas, Luis M. Ponce De Leon, has summarized the timeliest cybersecurity issues and provided recommendations below. DDoS Attacks
Findings Summary: Malware Targeting a Russian Defense Contractor On 14 December, DeepSeas automated scanning and analysis encountered a unique piece of malware targeting a Russian defense contractor on VirusTotal. The file in question, listed as 567000-13.rar, contains a .PDF file of the same name, which was likely directed toward an
Each year brings innovations in threats from cyber criminals. Following breakthroughs in 2023 that changed the threat environment, 2024 promises a new generation of threats leveraging AI, data theft, spear phishing, sophisticated ransomware, and more. Leveraging research from TechTarget’s Enterprise Strategy Group and real-world expertise from DeepSeas, the special report
DeepSeas is aware of reports that Russian nation-state actors, specifically APT29, have been exploiting an authentication bypass vulnerability in JetBrains’ TeamCity servers. Public and bespoke detection logic for the payloads associated with this activity have been deployed. Background – JetBrains TeamCity Vulnerability CVE-2023-42793 First identified and reported to JetBrains in
Background DeepSeas has identified new samples of the Russian, financially motivated cyber criminal group FIN7’s former flagship backdoor malware, Carbanak. The malware, which has not been seen for several years, reemerged in the last few weeks as a new variant that is being uploaded to public malware repositories. In the
In the intricate and ever-evolving landscape of cybersecurity, a particular term has been consistently dominating headlines and becoming a household name – ransomware. This blog post is specifically designed for those who are new to the field of cybersecurity or who have come across the term ‘ransomware’ in news headlines
On 18 July 2023, Citrix issued an advisory stating that a Remote Code Execution (RCE) vulnerability in older installations of NettScaler ADC was being actively exploited in the wild. The RCE vulnerability was assigned CVE-2023-3519 with a CVSS severity score of 9.8. There were 2 additional CVEs disclosed in the
Let’s do a deeper dive into the nuances of service hijacking – specifically the two primary variations of the technique and practical insights on how to detect them. The aim here is to equip you with the knowledge needed to identify these stealthy attacks and fortify your defenses. Awareness and knowledge
21% of the DeepSeas crew are Veterans or Active Military Reservists. Join our talented crew of cyber experts.
You pick the time and day. We'll be ready to answer your questions.
