CASHY200 | Cyber Security Review

xHunt Campaign: Newly Discovered Backdoors Using Deleted Email Drafts and DNS Tunnelling for C2

Posted onNovember 9, 2020November 9, 2020

The xHunt campaign has been active since at least July 2018 and we have seen this group target Kuwait government and shipping and transportation organizations. Recently, we observed evidence that the threat actors compromised a Microsoft Exchange Server at an Read More …

More xHunt – New PowerShell Backdoor Blocked Through DNS Tunnel Detection

Posted onOctober 10, 2019October 22, 2019

During our continued analysis of the xHunt campaign, we observed several domains with ties to the pasta58[.]com domain associated with known Sakabota command and control (C2) activity. In June 2019, we observed one of these overlapping domains, specifically, windows64x[.]com, being used as the Read More …

FEATURED CONTENT

WHY IT IS IMPORTANT TO USE PROFESSIONAL ANTI-DDoS SOLUTIONS
By StormWall

OPERATIONAL RESILIENCE, CYBERSECURITY AND GLOBAL FIGHT AGAINST FINANCIAL CRIME
By Malika Shermatova, Founder and Managing Director, MINERVA PR

HOW RANSOMWARE AUTHORS HIT HEALTHCARE SECTOR
By David Balaban, computer security researcher

THE HUMAN FIREWALL – THE HUMAN SIDE OF CYBER SECURITY
By Annamária Beláz and Zsolt Szabó, Doctoral School on Safety and Security Sciences, Óbuda University, Budapest, Hungary

APPLICATIONS OF LORAWAN TECHNOLOGY
By Döníz Borsos PhD student, Óbuda University, Doctoral School on Safety and Security Sciences, Hungary

WARFLYING – 2.4 GHZ AND 5 GHZ WIRELESS NETWORK DETECTION BY DRONE IN CRITICAL INFRASTRUCTURE
By Barnabás Sándor, Óbuda University, Doctoral School for Safety and Security Sciences, Budapest, Hungary

MONITORING AND ANALYZING SOCIAL MEDIA TO PROTECT CRITICAL INFRASTRUCTURE
By Csaba Fenyvesi and Ana Miletic

COGNITIVE BIASES IN INFORMATION SECURITY CAUSES, EXAMPLES AND MITIGATION
By Veselin Monev, information security and compliance practitioner

HUMAN BEHAVIOUR AND DIGITAL TRUST: HOW UNEXPECTED REWARDS CAN IMPROVE CYBERSECURITY, PROTECT CRITICAL INFRASTRUCTURE AND REDUCE COSTS
By Chris A. Jones, George Runger and Jack Caravelli

CYBER INSIDER RISK MITIGATION MATURITY MATRIX
By Chris Hurran, OBE, Senior Associate Fellow of the Institute for Security and Resilience Studies, UCL

COVID-19

We are monitoring the coronavirus situation closely and have a robust business continuity plan in place to ensure we meet the needs of our partners and customers as well as provide for the health and safety of our employees.

As the situation evolves we will be reacting accordingly to make sure that all parties receive continuous service and support.

If you have any questions or concerns please do not hesitate to contacts us. For more information on COVID-19 outbreak including preventative measures please contact your local Public Health Authority or visit the World Health Organisation (WHO) website: www.who.int/emergencies/diseases/novel-coronavirus-2019

With best wishes
Cyber Security Review team