Tag Archive for: OFFERINGS.

Info-Stealing Malware Populates ‘Cloud of Logs’ Offerings


Cybercrime
,
Fraud Management & Cybercrime

Private Subscription Services Emerge, Together With Fresh Strains of Info Stealers

Info-Stealing Malware Populates 'Cloud of Logs' Offerings
Advertisement for TitanStealer, first offered for sale in November 2022 via the Russian-language BHF and Dark2Web forums (Source: Kela)

Cybercrime watchers continue to see strong demand for fresh strains of information-stealing malware and the personal information being harvested by such info stealers.

See Also: Live Webinar | Education Cybersecurity Best Practices: Devices, Ransomware, Budgets and Resources


Information stealers exfiltrate data from an infected system – aka “bot” – and batch it into “logs” containing “browser login information including passwords, cookies, credit card details, crypto wallet data and more,” threat intelligence firm Kela said in a new report.


Phishing is the main distribution method, oftentimes through links to compromised or malicious websites. One recent campaign tied to the Lumma and Aurora stealers used “typosquatted” domains – malicious domains with names resembling legitimate ones – that pretended to offer access to OpenAI and ChatGPT, cybersecurity firm Cyble reported.


After infecting systems and collecting logs, criminals often sell the stolen data via automated bot markets such as Genesis, RussianMarket and TwoEasy, via forums such as BHF and Dark2Web, and Telegram messaging app channels. While Genesis was disrupted last month via an international police operation accompanied by more than 100 arrests worldwide, the BBC reported Friday that the darknet version of Genesis appears to remain alive and well.


One sign of the maturity of marketplaces selling account takeover services or stolen digital identities is the emergence in recent years…

Source…

AWS Announces General Availability of Three New Serverless Analytics Offerings


New serverless options for Amazon EMR, Amazon MSK, and Amazon Redshift help customers analyze vast amounts of data without having to configure, scale, or manage the underlying infrastructure

Informatica, NextGen Healthcare, and Huron among customers and partners using new serverless analytics options

SEATTLE–(BUSINESS WIRE)–Amazon Web Services, Inc. (AWS), an Amazon.com, Inc. company (NASDAQ: AMZN), today announced the general availability of three new serverless analytics offerings that make it even easier for customers to analyze vast amounts of data without having to configure, scale, or manage the underlying infrastructure. Today’s announcements include new serverless offerings for Amazon EMR to enable customers to run analytics applications using open-source big data frameworks (Apache Spark and Hive) without having to manage the underlying infrastructure, Amazon Managed Streaming for Apache Kafka (Amazon MSK) to simplify real-time data ingestion and streaming, and Amazon Redshift to allow customers to run high-performance data warehousing and analytics workloads on petabytes of data without having to manage clusters. Along with other serverless analytics offerings from AWS such as Amazon QuickSight for business intelligence and AWS Glue for data integration, the new offerings announced today make it significantly easier and more cost-effective for customers to modernize their infrastructure and analyze vast amounts of data without worrying about capacity planning or incurring excess costs by over-provisioning for peak demand. There are no upfront commitments or additional costs to use Amazon EMR Serverless, Amazon MSK Serverless, and Amazon Redshift Serverless, and customers only pay for the precise capacity needed for their analytics workloads.

“By offering the most serverless options for data analytics in the cloud—including options for data warehousing, big data processing, real-time data analysis, data integration, interactive dashboards and visualizations, and more—we are making it even easier for customers to maximize the value of their data to drive innovation, improve customer experiences, and make better decisions faster,” said Swami…

Source…

NetWitness Launches Comprehensive XDR Offerings for Next Generation Security | Business


BEDFORD, Mass.–(BUSINESS WIRE)–Jun 7, 2022–

NetWitness, a globally trusted provider of cybersecurity technologies and incident response, today announced NetWitness XDR, a family of products and capabilities delivering comprehensive detection and response on premise, in the cloud or as a hybrid of the two. This new offering and product architecture delivers the full range of deployment options enterprises seek today to meet their unique cybersecurity needs and use cases.

NetWitness XDR delivers a robust set of capabilities enabling extended detection and response (XDR) and helping customers stay ahead of the most sophisticated cyber threats. These include:

  1. Unified collection, data, and visibility across multiple security layers
  2. Automatic enrichment of data using any technical or business source
  3. A wide toolset of detection technologies including, but not limited to, advanced behavioral analysis
  4. External and internal threat intelligence to identify known security risks and threat actors
  5. Truly insightful context, visualization, and investigation tools
  6. Threat hunting tools and methodologies to identify previously unknown threats
  7. Highly repeatable and measurable incident investigation and response processes
  8. A strong array of both automated and human response options

“NetWitness has enjoyed the trust of some of the world’s most security sensitive organizations because of its unique ability to monitor the entire attack surface across the network, endpoint, cloud, IoT, logs and more,” said CEO of RSA and NetWitness, Rohit Ghai. “We have been delivering XDR capability to the market for several years and today we are delighted to announce new innovations in the platform and reintroduce it to the market as NetWitness XDR.”

Under this new model, NetWitness XDR will be comprised of three main product lines that showcase its uniquely powerful support for all XDR use cases. NetWitness Platform XDR 12 is the newest major release of NetWitness Platform. This technology stack, typically deployed as customer-managed software or hosted by MSSPs, has been enhanced to focus on detection…

Source…

Fortinet expands security services offerings to protect digital infrastructures



Read Article


FortiTrust provides security services that follow the user across an organisation’s entire security platform, enabling organisations to easily manage and secure across all form factors. Other benefits of the new offering include: 

FortiTrust adds to Fortinet’s existing FortiCare and FortiGuard security services portfolio. FortiCare services are available for all Fortinet Security Fabric products. FortiCare offers three levels of services, including Essential, Premium and Elite, all providing 24×7 technical support and timely issue resolution. FortiCare also offers several product and account-based services options to address the unique needs of any organisation. Through FortiCare, organisations have access to Fortinet experts to help accelerate technology implementation, provide reliable assistance through advanced support, and offer proactive care to maximise security and performance of Fortinet deployments.

FortiGuard Security Services provide organisations with different services tied to their Fortinet devices, enabling coordinated and consistent real-time defense for the latest cyber attacks. FortiGuard Security Services are tuned around different customer segments to include individual services for Enterprises, bundles for commercial, and packages for SMBs. Leveraging industry-leading threat intelligence from FortiGuard Labs, FortiGuard Security Services offer a suite of market-leading, AI-enabled security capabilities that continuously assess risks and automatically adjust protection across the Fortinet Security Fabric.

The proliferation of new devices and edges along with investments in digital innovations continue to expand the digital attack surface. Many organisations are challenged with protecting across their entire infrastructure as the threat landscape has become much more sophisticated and harder to manage with isolated point products and disparate services. This complexity is compounded with different pricing structures for services and multiple licensing models ranging from device-based, hardware-based and user-based that have remained siloed across form factors. 

Expanding on the Fortinet Security Fabric’s ability to protect…

Source…