Blog

Securonix Threat Research: Detecting Persistent Cloud Infrastructure/Hadoop/YARN Attacks Using Security Analytics: Moanacroner, XBash, and Others

Published on January 24, 2019

By Oleg Kolesnikov and Harshvardhan Parashar, Securonix Threat Research Team   Figure 1: Moanacroner Establishes Persistence After Initial Cloud YARN/Hadoop Infection Using Crontabs   Introduction In recent months, we have been observing an increase in the number of automated attacks targeting exposed cloud infrastructure/Hadoop/YARN instances. Some of the attacks we...

The Top Seven Cybersecurity Horrors

Published on October 31, 2018

…and how to protect yourself It’s Halloween! And before the night exposes the horrors from the netherworld, most of us still have to get through the wacky costumes at work. Just the same, the cybersecurity demons do not slow down, and our SOC superheroes must continue to save the world...

Securonix Threat Research: British Airways Breach: Magecart Formgrabbing Supply Chain Attack Detection

Published on October 29, 2018

By Oleg Kolesnikov and Harshvardhan Parashar, Securonix Threat Research Team Updated November 6, 2018   Figure 1: Magecart modernizr-2.6.2.min.js Obfuscated Formgrabbing Payload from British Airways Attacks   Introduction The data breach suffered by British Airways earlier this year affected around 380,000 customers and resulted in the theft of customer data...

Securonix and Cylance: End-to-End AI-Enabled Security Intelligence and Threat Prevention

Published on October 11, 2018

Suspicious activity on the endpoint is usually an indicator that a larger cybersecurity threat or attack is occurring. Your users are continually targeted by various attacks–phishing, malicious websites, session-based attacks and more—that end up playing out on the endpoints inside your organization. While understanding anomalous behaviors on your endpoints is...

Inaugural Securonix Customer Excellence Awards Announced

Published on September 28, 2018

The Securonix Customer Excellence Awards     The Securonix Customer Excellence Awards recognize forward thinking security leaders who are demonstrating a long-term vision to elevate the role and impact of security in their organizations, and have implemented cutting edge cybersecurity solutions to realize this vision. The Securonix Cybersecurity Excellence Awards...

Securonix Threat Research: KRONOS/Osiris Banking Trojan Attack

Published on September 11, 2018

By Oleg Kolesnikov and Harshvardhan Parashar, Securonix Threat Research Team Figure 1: Document with Malicious VBA Macro used in Osiris Germany Campaign   Introduction The KRONOS malware was first discovered in June 2014 as a Banker Trojan available for purchase in a Russian underground forum for $7,000 [1]. After staying...

“5 Questions to Ask About Machine Learning,” a Securonix Response

Published on August 30, 2018

By Igor Baikalov, Chief Scientist, Securonix In his January 31 article in Dark Reading titled “5 Questions to Ask about Machine Learning” Anup Gosh proposes 5 questions consumers should ask in order to separate marketing hyperbole from technical reality. The questions Gosh proposes are all good points that you should...