February Security Roundup | The thriving Chinese threat actor community
"Pantsless Data": Decoding Chinese Cybercrime TTPs
For years, the majority of industry security research and public reporting has focused on cybercriminals based in Western countries and Russia. While there’s good reason for this, there’s a growing cybercriminal community that we should all be paying attention to: Chinese-language threat actors.
Our latest blog by SpyCloud Labs explores this vast ecosystem, breaking down their tactics, techniques, and procedures (TTPS), including common data exfiltration methods these threat actor groups are using to create global impact.
To accompany our recent blog post, SpyCloud researchers took a deep-dive into recent findings on Chinese threat-actor activity, including common TTPs, slang terms associated with the illicit data trade ecosystem, and other red flags.
TRENDING
Tune into this video where we discuss new findings, including significant duplication, mislabeling, and/or fabrication of data within the MOAB leak pertaining to at least 30 of the “new” breaches.
The SOC must constantly evolve, playing both offense and defense at the same time. This blog takes a look at current challenges facing SOC teams, and how to start solving for them.
IN OTHER NEWS
LendingTree’s security program relies on SpyCloud to prevent ATO and ransomware attacks. Hear from their SecOps manager about how they proactively protect?thousands of employee accounts and millions of customer accounts.
领英推荐
We know stolen cookies are a problem, but in this article Trevor Hilligoss, Vice President of SpyCloud Labs, explains just how – and why – it’s so easy for criminals to get their hands on them to wreak havoc, and what you can do to protect yourself.
PRODUCT UPDATE
With SpyCloud’s new integration with Cortex XSOAR, your team can bridge gaps between identity-related exposure incidents and corresponding incident response and remediation workflows. Get the details!
Our Check Your Exposure tool got a facelift! You can now see specific breaches that may have affected your organization, as well as combolists and malware infections where your domain and email may be included. You can also check a password to see if it’s been exposed on the darknet.
UPCOMING EVENTS
CISO Exec Net Series (Various Locations) March 5 - 21: Learn how SpyCloud can augment your Zero Trust infrastructure
MRC (Las Vegas, NV) March?25 - 28:?Stop by booth #207 to?meet our team and ask for a live demo
What Do Criminals Know About Your Organization?
Ignorance is not bliss. Know immediately if your domain has malware-siphoned data circulating in the criminal underground with a simple search.
Check Your Exposure at spycloud.com/check-your-exposure/.