Aggregator

使用方法： Windows run.bat @echo offchcp 866 >NULSET PYTHONUNBUFFERED=TRUE if "%~1"=="" goto ...

蜜雪冰城微信小程序抓包获取 Access-Token ，填写到py脚本对应变量处，定时运行脚本即可。 以下是Python.py脚本： import requestsimport threadi...

需要关掉SIP 、用美区的AppleID、安装Xcode， 禁用 SIP 可能会导致一些未知的影响。 目前，Xcode LLM 还不稳定，可能会导致内核恐慌，从而丢失您的一些文档修改。 请谨慎使...

2024年初，ThreatLabz发现一名受害者向 Dark Angels支付了7500万美元，高于目前所有已知的赎金金额。

[抱拳]回复口令：“一夫当关”，获取今日最新情报！ [烟花]tips强烈推荐 ：https://tix.qq.com - 高阶版免费体验：查询额度权益 - 每日最新封禁IOC获取 - 专家IP鉴定分析权限

[抱拳]回复口令：“一夫当关”，获取今日最新情报！ [烟花]tips强烈推荐 ：https://tix.qq.com - 高阶版免费体验：查询额度权益 - 每日最新封建IOC获取 - 专家IP鉴定分析权限

最强网安搜索引擎网安新兴赛道+厂商速查引擎已增至217个赛道！快来看看都有哪些新增！自推出网安速查引擎以来，

自研是一条充满未知的道路

OECD版的“数据二十条”

【庆祝中国人民解放军建军97周年】 军歌嘹亮，军旗飘扬，那是热血与忠诚的象征。 他们的步伐坚定有力，穿越战火纷飞，踏过艰难险阻。他们的眼神果敢坚毅，面对危险毫不退缩，面对困难勇往直前。 在抗洪一线，他们筑起人墙，抵挡洪水的肆虐；在抗震现场，他们争分夺秒，拯救每一个生命。他们用行动诠释着“为人民服务”的宗旨，用汗水和鲜血书写着忠诚与奉献。 让我们铭记他们的奉献，感恩他们的付出。在这个特殊的日子里，向伟大的中国军人致敬！愿祖国繁荣昌盛，军旗永远飘扬！

申请截止时间（2024年8月31日）之前填写并提交《申请书》电子版

我们距离能做「慢思考」的 AI，还有多远。

SpaceX 要在澳大利亚回收星舰，涉及美国出口管制；微软敦促美国国会打击 AI 深度伪造行为；META 发布开源模型 Meta SAM 2

文章底部有福利！

Multifactor authentication (MFA) has formally been around for more than two decades, gaining the most...

The post Is Your MFA Broken? appeared first on Axiad.

The post Is Your MFA Broken? appeared first on Security Boulevard.

Ransomware has been a daunting threat to organizations worldwide for decades. Recent trends show that ransomware attacks continue to grow more advanced and persistent. It’s become increasingly clear that no one is spared as cybercriminals carry out attacks that even target the children of corporate executives to force ransom payments. Despite the high-profile takedowns of criminal ransomware networks in “Operation Endgame” and “Operation Duck Hunt,” the most notorious ransomware groups remain tenacious, quickly regrouping after disruptions and aggressively launching new attacks.

The Zscaler ThreatLabz team has just released its latest research on this critical ransomware threat landscape in the ThreatLabz 2024 Ransomware Report, shedding light on new data and trends. ThreatLabz analyzed 4.4 million ransomware attacks blocked by the Zscaler cloud, amounting to a 17.8% year-over-year increase, and conducted extensive analysis of ransomware samples and attack data. The report offers valuable insights into primary attack targets, the most dangerous ransomware families, and the evolving tactics and demands of ransomware threat actors. Most shockingly, it reveals that ThreatLabz uncovered a record-breaking USD$75 million ransom payment.This blog post will summarize select findings from the report. For a comprehensive understanding of the ransomware landscape and how to strengthen your organization’s defenses against this pervasive threat, download the Zscaler ThreatLabz 2024 Ransomware Report.

5 key ransomware findingsThe ThreatLabz team tracks ransomware activity extensively to identify and understand how these threats are evolving. The following subset of findings highlight some of the most prominent trends and targets.

Top ransomware trends1. The number of extorted companies based on analysis of malicious data leak sites grew by 57.8% year-over-year, despite law enforcement actions that include criminal arrests, indictments, and seized infrastructure. The report breaks down the most significant law enforcement operations against ransomware groups and initial access brokers over the past year.

2. The use of voice-based social engineering to gain entry into networks is on the rise—a technique made popular by Scattered Spider and the Qakbot threat group.

3. The exploitation of vulnerabilities continues to be a prevalent attack vector for ransomware, emphasizing the critical need for measures like prompt patching and unified vulnerability management, reinforced by a zero trust architecture.

Top ransomware targets4. The manufacturing, healthcare, and technology sectors were the top targets of ransomware attacks between April 2023 and April 2024, while the energy sector experienced a 527.27% year-over-year spike.

5. The United States, United Kingdom, Germany, Canada, and France were the top five countries targeted by ransomware in the same time period.

Delve into these findings and more data in the full report.

$75M ransom payment uncoveredThreatLabz identified 19 new ransomware families this year, increasing the total number tracked to 391 over the past decade, as cataloged in the ThreatLabz GitHub repository.

With new and emerging ransomware groups come new and ever-evolving methods to maximize their operational impact and financial gains. This was evidenced by the record-breaking $75 million ransom payment uncovered by ThreatLabz. The report discloses the threat group behind this unprecedented payment—also named by ThreatLabz as one of the top five ransomware families that will be a big threat to businesses in the year ahead. Learn about their strategic approach and why ThreatLabz predicts similar strategies will gain traction among other threat actors.The report also shares comprehensive insights into the tactics, potential impacts, and recent activities of other ransomware families that ThreatLabz has identified as high-risk and noteworthy for 2024-2025.

Stopping ransomware starts with zero trustThe growing volume and cost of ransomware attacks found in this year’s report is a stark reminder that organizations must prioritize robust ransomware defenses. The Zscaler Zero Trust Exchange™ platform addresses this challenge by offering a holistic approach to stopping ransomware.The Zscaler ThreatLabz 2024 Ransomware Report provides essential guidance to this end, including:

Fighting AI with AI: Learn about Zscaler’s AI-powered cyberthreat protection capabilities needed to combat AI-driven threats.
Zero trust architecture advantages: Learn how the Zero Trust Exchange stops ransomware at every stage of the attack cycle:
Minimize the attack surface: By replacing exploitable VPN and firewall architectures with a zero trust architecture, it hides users, applications, and devices behind a cloud proxy, making them invisible and undiscoverable from the internet.
Prevent compromise: The platform uses TLS/SSL inspection, browser isolation, advanced sandboxing, and policy-driven access controls to prevent access to malicious websites and detect unknown threats before they reach the network, reducing the risk of initial compromise.
Eliminate lateral movement: Leveraging user-to-app (and app-to-app) segmentation, users connect directly to applications, not the network, eliminating lateral movement risk. It can also help find and stop possible attackers from moving around through identity threat detection and response (ITDR) and deception capabilities.
Stop data loss: Inline data loss prevention measures, combined with full inspection, effectively thwart data theft attempts.

Ransomware prevention checklist: Access the latest best practices to mitigate ransomware risk and protect your organization from existing and emerging threats.

Get your copy of the Zscaler ThreatLabz 2024 Ransomware Report today. As ransomware threats persist, understanding the latest trends and potential implications of these attacks and assessing your risk will help your organization protect itself against ransomware in 2024 and beyond.

The post ThreatLabz Ransomware Report: Unveiling a $75M Ransom Payout Amid Rising Attacks appeared first on Security Boulevard.

Clutch Security is the latest cybersecurity startup looking to secure and manage non-human identity.