North Korean state hacking group Kimsuky is developing Android malware targeted at South Korean users by disguising the apps as legitimate apps including a Google security plug-in and a document viewer. Seoul-based cybersecurity company S2W dubs the apps FastFire, FastSpy and FastViewer.
Splunk and Zscaler have partnered to deliver a superior, Zero Trust approach to security. The tightly integrated, best-of-breed cloud security and security analytics platforms deliver a cloud experience for the modern, cloud-first enterprise.
The Splunk Threat Research Team actively monitors the emergence of new cyber threats within ongoing events in Eastern Europe, and recently developed several detections to help defend against malicious payloads and destructive software.
In the event of an attack, security teams need fast answers. With a unified security operations platform in place, security teams can quickly assess the impact of an attack on the organization, help analysts piece together what happened, and ultimately, facilitate a rapid response.
Tune in to hear directly from Splunk and Google Cloud experts about the new integrations delivering an automated, cloud-native, serverless and scalable “push” of data from Google Cloud to Splunk Cloud.
Threat actors are using Internet Information Services - Microsoft's extensible web server software - to deliver a previously undocumented dropper that is being used to install a new backdoor and other tools. The group dubbed Cranefly uses a new backdoor called Danfuan, researchers say.
Customer engagement platform Twilio says the number of customers affected by a phishing campaign that coaxed employees of the San Francisco company into permitting attackers to bypass multifactor authentication protections will stand at a final tally of 209.
Fallout from the hack of Australian health insurer Medibank continues to worsen as the company twice this week acknowledged a wider set of affected individuals. Hackers had access to the personal data of 4 million individuals and significant amounts of health claims data.
A surging Microsoft has leapfrogged to the top of the SIEM Gartner Magic Quadrant, catapulting past security operations stalwarts IBM, Splunk, Securonix and Exabeam. Microsoft has climbed from being named a visionary by Gartner last year to crushing the SIEM market in execution ability this year.
Nearly one month after a ransomware attack on the nation's fourth-largest hospital network, CommonSpirit Health is still struggling to bring online the various IT systems - including electronic medical records, prescriptions and patient appointment scheduling - affected at many of its facilities.
Parliament IT systems in two East European capitals were disrupted Thursday. The Poland Senate said a distributed denial-of-service attack partially originated from inside Russia. In Slovakia, a Parliament speaker postponed voting after telling lawmakers that vote-counting systems were not working.
Peter Mahoney, global alliances Americas DPS presales senior manager at Dell Technologies, and Ana Maria Ordonez, global solutions architect at Equinix, discuss how to achieve consistent security across physical, containerized and virtual workloads.
One of Australia's largest private testing laboratories announced a data breach affecting 223,000 Australians. Ransomware-as-a-service group Quantum took credit for the incident, posting an 86-gigabyte file in June. "There is no evidence of misuse of any of the information," says Medlab Pathology.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.