Blog

NETSCOUT Adaptive Threat Analytics improves incident response

NETSCOUT announced Adaptive Threat Analytics, a new enhancement to its Omnis Cyber Intelligence Network Detection and Response (NDR) solution, designed to improve incident response and reduce risk. Adaptive Threat Analytics enables security teams to investigate, hunt, and respond to cyber threats more rapidly. Cybersecurity professionals face a challenge in the race against time to detect and respond appropriately to cyber threats before it is too late. Alert fatigue, increasing alert volume, fragmented visibility from siloed … More → The post NETSCOUT Adaptive Threat Analytics improves incident response appeared first on Help Net Security.
http://news.poseidon-us.com/TLwvp8

Vulnerable firmware for Gigabyte motherboards could allow bootkit installation

UEFI firmware running on 100+ Gigabyte motherboard models is affected by memory corruption vulnerabilities that may allow attackers to install persistent and difficult-to-detect bootkits (i.e., malware designed to infect the computer’s boot process). “While AMI (the original firmware supplier) has indicated that these vulnerabilities were previously addressed, they have resurfaced in Gigabyte [OEM firmware builds] and are now being publicly disclosed,” Carnegie Mellon University’s CERT Coordination Center (CERT/CC) has warned on Friday. The Gigabyte UEFI … More → The post Vulnerable firmware for Gigabyte motherboards could allow bootkit installation appeared first on Help Net Security.
http://news.poseidon-us.com/TLwr7f

F5 accelerates application delivery and security

F5 announced new tools to reduce the immense complexity cross-functional operations (XOps) teams face in managing hybrid, multicloud, and AI-driven application environments. F5 AI Assistant now provides a single natural language interface across F5 BIG-IP, F5 NGINX One, and F5 Distributed Cloud Services offerings to unify the user experience throughout the F5 Application Delivery and Security Platform (ADSP). As a new feature for the AI Assistant, F5 iRules code generation introduces a scalable, automated solution … More → The post F5 accelerates application delivery and security appeared first on Help Net Security.
http://news.poseidon-us.com/TLwr47

Fingerprint helps enterprises distinguish between legitimate and malicious automated web traffic

Fingerprint announced new Smart Signals and platform enhancements that detect malicious bots and AI agents, distinguishing them from legitimate automated traffic. As agentic commerce experiences explosive growth and autonomous AI agents become increasingly sophisticated, enterprises need advanced tools to protect against evolving fraud schemes without delaying innovation or turning away legitimate transactions. Bots currently comprise over half of all internet traffic, with 30% classified as malicious, and Gartner predicts fully autonomous AI agents by 2036. … More → The post Fingerprint helps enterprises distinguish between legitimate and malicious automated web traffic appeared first on Help Net Security.
http://news.poseidon-us.com/TLwr24

At-Bay MXDR boosts security for mid-market and small businesses

At-Bay launched its new Managed Extended Detection and Response (MXDR) platform, designed to give mid-market and small businesses access to enterprise-grade cybersecurity at an affordable cost. Spanning endpoint, cloud, identity, and email, At-Bay Stance MXDR provided by At-Bay Security, gives organizations cybersecurity and proactive threat detection to stop attacks before they happen. According to claims data, 90% of all mid-market and small business cyber claims can be mitigated with At-Bay’s MXDR platform1. “Detection technologies have … More → The post At-Bay MXDR boosts security for mid-market and small businesses appeared first on Help Net Security.
http://news.poseidon-us.com/TLwr1X

Pentera unveils capability to detect Git repository risk exposure

Pentera has introduced a capability to uncover and validate risk exposure from data in Git repositories. Pentera now discovers repositories linked to the organization, identifies embedded credentials, tokens, and other sensitive data, and utilizes them to execute safe-by-design test-attacks against production environments. Git repositories are widely used across enterprises to support application development, DevOps automation, and IT operations. However, they frequently contain hardcoded credentials, configuration files, or access tokens that, when exposed, often serve as … More → The post Pentera unveils capability to detect Git repository risk exposure appeared first on Help Net Security.
http://news.poseidon-us.com/TLwqrP

AWS plans $100M Generative AI Innovation Center expansion

Two years post-launch, the cloud giant touted thousands of participating customers, including the NFL, BMW Group and AstraZeneca.
http://news.poseidon-us.com/TLwjtn

AsyncRAT evolves as ESET tracks its most popular malware forks

AsyncRAT is an open-source remote access trojan that first appeared on GitHub in 2019. It includes a range of typical RAT capabilities, such as keylogging, screen capture, credential theft, and more. Its simplicity and open-source design have made it a popular tool among cybercriminals, leading to its widespread use in various cyberattacks. Over time, AsyncRAT has become a mainstay of the modern malware ecosystem, spawning a wide array of variants and forks, which are customized … More → The post AsyncRAT evolves as ESET tracks its most popular malware forks appeared first on Help Net Security.
http://news.poseidon-us.com/TLwhM6

Keylogger Data Stored in an ADS, (Tue, Jul 15th)

If many malware samples try to be “filess” (read: they try to reduce their filesystem footprint to the bare minimum), another technique remains interesting: Alternate Data Streams or “ADS”[1]. This NTFS feature allows files to contain multiple data streams, enabling hidden or additional metadata to be stored alongside the main file content without being visible in standard file listings. A common usage of ADS is the “Mark of the Web”[2] that helps to flag files as suspicious or not depending on their origin.
http://news.poseidon-us.com/TLwXwg

Inorganic DNA: How nanoparticles could be the future of anti-counterfeiting tech

For decades, manufacturers and security professionals have been playing a high-stakes game of cat and mouse with counterfeiters. From holograms and QR codes to RFID tags and serial numbers, the industry’s toolkit has evolved, but so have the threats. Now, Italian startup Particular Materials is taking a radically different approach: tagging physical goods at the molecular level using engineered nanomaterials. “Our idea was simple,” says Francesco Zanin, CEO of Particular Materials. “What if we could … More → The post Inorganic DNA: How nanoparticles could be the future of anti-counterfeiting tech appeared first on Help Net Security.
http://news.poseidon-us.com/TLwTVM