Research, News, and Perspectives

Ausnutzung von Schwachstellen

XDR: Jagd nach Web Shell-Angreifer

Bei einem Sicherheitsvorfall gegen die Web Shell missbrauchten Angreifer den IIS Worker, um gestohlene Daten zu exfiltrieren. Wir haben die Attacke analysiert und zeigen den Ablauf. Dieses Wissen hilft dabei, die angemessenen Vorkehrungen zu treffen.

Research Feb 04, 2025

Save to Folio

Research Feb 04, 2025

Save to Folio

Ausnutzung von Schwachstellen

CVE-2025-0411: Ukrainian Organizations Targeted in Zero-Day Campaign and Homoglyph Attacks

The ZDI team offers an analysis on how CVE-2025-0411, a zero-day vulnerability in 7-Zip, was actively exploited to target Ukrainian organizations in a SmokeLoader campaign involving homoglyph attacks.

Research Feb 04, 2025

Save to Folio

Research Feb 04, 2025

Save to Folio

Ausnutzung von Schwachstellen

Der Security-RückKlick 2025 KW 05

Weihnachtlicher Süßkram wie Plätzchen und Co sind out. Virtuelle „Kekse“ aber – also Browser-Cookies – erfreuen sich jedoch weiterhin anhaltender Beliebtheit vor allem bei Cyberkriminellen. Nutzer sollten daher einige Regeln beachten.

Latest News Feb 03, 2025

Save to Folio

Latest News Feb 03, 2025

Save to Folio

Endpunkte

Native Sensors vs. Integrations for XDR Platforms?

Native sensors vs. integrations in XDR: Native sensors offer faster deployment, real-time detection, and deeper visibility, while integrations may add complexity and delays. Learn how to optimize your XDR strategy for improved security.

Expert Perspective Feb 03, 2025

Save to Folio

Expert Perspective Feb 03, 2025

Save to Folio

Compliance und Risiko

Future of Cybersecurity: Will XDR Reshape SIEM & SOAR?

XDR is reshaping cybersecurity by unifying and enhancing SIEM and SOAR capabilities into a single platform. It addresses alert fatigue, improves incident correlation, simplifies operations, and enhances efficiency for SOC teams.

Expert Perspective Jan 31, 2025

Save to Folio

Expert Perspective Jan 31, 2025

Save to Folio

NDR: Not Just a "Nice to Have" Anymore

Network Detection and Response (NDR) is no longer a 'nice-to-have'—it’s essential. NDR complements EDR, accelerates incident response, and enhances visibility, making it a critical tool for modern cybersecurity strategies and service providers.

Expert Perspective Jan 30, 2025

Save to Folio

Expert Perspective Jan 30, 2025

Save to Folio

Ausnutzung von Schwachstellen

Cyberkriminelle Plätzchen-Diebe

Weihnachtlicher Süßkram wie Plätzchen und Co sind out. Virtuelle „Kekse“ aber – also Browser-Cookies – erfreuen sich jedoch weiterhin anhaltender Beliebtheit vor allem bei Cyberkriminellen. Nutzer sollten daher einige Regeln beachten.

Expert Perspective Jan 30, 2025

Save to Folio

Expert Perspective Jan 30, 2025

Save to Folio

Endpunkte

Lumma Stealer’s GitHub-Based Delivery Explored via Managed Detection and Response

The Managed XDR team investigated a sophisticated campaign distributing Lumma Stealer through GitHub, where attackers leveraged the platform's release infrastructure to deliver malware such as SectopRAT, Vidar, and Cobeacon.

Research Jan 30, 2025

Save to Folio

Research Jan 30, 2025

Save to Folio

ASRM: A New Pillar for Cyber Insurance Underwriting

ASRM transforms cyber insurance underwriting by integrating real-time risk assessments, advanced tools (NDR, EDR, Cloud Security, MDR), and proactive mitigation strategies to improve accuracy, reduce claims, and build trust.

Expert Perspective Jan 29, 2025

Save to Folio

Expert Perspective Jan 29, 2025

Save to Folio

Ausnutzung von Schwachstellen

Pwn2Own 2025: Ethical Hacking von Automobilen

Beim Pwn2Own Automotive 2025 entdeckten die Teilnehmer insgesamt 49 Zero-Day-Schwachstellen in Software-definierten Fahrzeugen (SDVs). Es ging dabei um die Kategorien: Infotainment-Systeme (IVI), Ladegeräte für Elektrofahrzeuge und Betriebssysteme.

Latest News Jan 29, 2025

Save to Folio

Latest News Jan 29, 2025

Save to Folio