Secure Your Site(s): Avoid SSL/TLS Certificate Expiration

security toolbox

Not too many years ago, a few websites began adding an extra layer of security in the form of Secure Sockets Layer (SSL) certification. Today, most legitimate business sites are sure to have SSL certificates installed. Many of the SSL certificates installed and available today are actually Transport Layer Security (TLS) certificates, although they are […]

Using Sysmon and ETW For So Much More

Recently the team over at Microsoft’s SysInternals team Mark Russinovich and Thomas Garnier landed a new version of Sysmon v10 which adds a new event ID type Event ID 22 (DNS). If you are not familiar with Sysmon, it’s a free tool from Microsoft which incorporates a number of enhanced events from the operating system, […]

Credential Stuffing…A Side Effect of Data Breaches

credential stuffing

Credential stuffing is a type of brute force cyberattack which uses automation in an effort to gain unauthorized access to systems around the world…and it all starts with a simple data breach. Data from One Breach Poses Risks to Additional Systems An alarming number (almost half) of people use the same or similar password across […]

Protect Yourself from Password Spraying Attacks

binarydefense protect yourself

Password spraying attacks are just one method hackers use to gain unauthorized access to systems around the world. The technique itself is not complex, and a simple online search turns up instructions even cyber-novices can follow. While the attack is relatively simple and should be easy to defend against, it is effective, and it continues […]

AT&T Cybersecurity Names Binary Defense Global Partner of the Year

AV partner 1

Binary Defense™—a leading cybersecurity firm in Endpoint Detection and Response, SOC-as-a-Service and Counterintelligence—was named AT&T Cybersecurity’s (formerly AlienVault) 2018 Global Partner of the Year. Binary Defense had been named Global Partner of the Year in 2016 and returned to the top spot in 2018 by delivering 100% year-over-year growth. Binary Defense teams with AT&T Cybersecurity […]

Threat Intelligence: Employees’ Private Data Compromised in Airbus Data Breach

Aeronautical giant Airbus has recently discovered a breach in their system which led to unauthorized parties accessing employee information. The company assured that none of their commercial operations were affected. Information such as employee contact details and IT identification details were accessed. “Investigations are ongoing to understand if any specific data was targeted, however, we […]

Threat Intelligence: Verity Healthcare Suffers Multiple Phishing Attacks

Verity Health System, a six medical clinic operation in Redwood City, California, has informed an undisclosed number of people that their information may have been accessed due to phishing. Through these phishing attempts, attackers were able to obtain three employee emails that had messages and attachments contained within them. Other emails included patient names, treatment […]

Threat Intelligence: Adware Installers Using Rumba Variant STOP

Threat Intelligence Adware Installers Using Rumba Variant STOP

DJVU and Tro STOP ransomware variants have been seen a lot over the past month, the new Rumba variant is similar but it adjoins its .rumba extension to a file once it’s encrypted. It is currently being dished out through adware bundles and software cracks. Software cracks used by websites typically enable adware bundles to […]

Threat Intelligence: WordPress Plugin WPML Hacked

WordPress Plugin WPML Hacked

WP MultiLingual (WPML) is home to 600,000 users who pay for their WordPress translation services. Recently they have suffered their first security issue since opening 12 years ago. The attack comes at the hands of who is believed to be a former employee. After gaining access to the website’s database, he used the email domains […]

Threat Intelligence: Nine Adware Apps Discovered on Play Store

Threat Intelligence Nine Adware Apps Discovered on Play Store

Unwanted ads are being hidden within nine apps found on the Google Play Store and have been flooding users’ devices. One of the apps has already been downloaded five million times while the total of the nine apps is nearly eight million globally. These apps are non-functioning and are placed specifically to deploy adware in […]