Trellix

CISO Harold Rivas joined forces with Venable LLP Senior Director of Cybersecurity Services Grant Schneider and Center for Strategic and International Studies (CSIS) yesterday to discuss a question many are asking: How will #GenAI reshape the roles of cybersecurity leaders? Thank you to all who attended — if you missed it, watch the recording here.

Not all throwbacks are nostalgia-worthy. 👀 Modern threat actors still rely on fileless malware, which has been around since 2001. CISO Harold Rivas sheds light on this problem as part of the Comprehensive Guide published by the RSA Conference. Learn more.

#TeamTrellix just wrapped up another exciting industry event! 🔥 We enjoyed connecting with customers, meeting new faces, and chatting about our industry-leading products at Infosecurity Europe. #InfoSec2024

We have the latest cyberthreat information you need to know – and it’s byte-sized. 😉 https://bit.ly/46JIoxB 1️⃣ DarkGate Again But... Improved? Threat level: Medium 🟧 The Trellix Advanced Research Center has analyzed the different updates regarding the DarkGate author, RastaFarEye, as well as the latest DarkGate campaigns and versions, delving into the changes and features they include. 2️⃣ AllaSenha Malware Aims At Stealing Brazilian Bank Account Credentials Threat level: Medium 🟧 A malicious payload called "AllaSenha" is targeting Brazilian bank accounts. It is delivered via a complex infection chain involving Python scripts and a Delphi-developed loader. 3️⃣ Threat Profile: APT36 Threat level: Medium 🟧 The threat group may encompass multiple subgroups and has many aliases. They are known to target military, diplomatic, and educational sectors in campaigns primarily focused on Indian government entities. 4️⃣ Threat Profile: Kimsuky Threat level: Medium 🟧 The group, believed to be sponsored by the North Korean regime, uses spear-phishing attacks specially crafted based on the target as their main intrusion method. 5️⃣ Analysis Of The Multi-Phase Espionage Campaigns Carried Out By The BlueDelta APT Group Threat level: Medium 🟧 The APT group BlueDelta, affiliated with the GRU, has targeted key networks across Europe using custom malware and credential harvesting. 6️⃣ Threat Profile: APT42 Threat level: Medium 🟧 APT42 is a state-sponsored group linked to the Iranian government that tends to target individuals and organizations deemed opponents of the regime, such as NGOs, activists, government officials, and journalists. 7️⃣ North Korean Threat Actor MoonStone Sleet Emerges With A Bag Of Tank Games And Fake Websites Threat level: Medium 🟧 Moonstone Sleet has used fictitious companies, trojanized tools, a game tank game to deliver malware, and custom ransomware. 8️⃣ APT36 Targets Indian Strategic Establishments for Gathering Intelligence Via Cyber Espionage Operations Threat level: Medium 🟧 Hunting efforts uncovered activity by the Pakistani-based group Transparent Tribe (APT36) targeting India's government, defense, and aerospace sectors. 9️⃣ APT41 Targets Industries in Italy Using an Undetected KeyPlug Backdoor Threat level: Low🟨 APT41 is a prolific Chinese APT group involved in state-sponsored cyber espionage activities since 2012 and allegedly has ties to the Chinese Ministry of State Security. 🔟 A Catalog of Hazardous AV Sites – A Tale of Malware Hosting Threat level: Low 🟨 In mid-April 2024, our team members observed multiple fake AV sites hosting highly sophisticated malicious files, such as APK, EXE, and Inno setup installers that include Spy and Stealer capabilities.

GenAI has the potential to streamline workflows, bolster security tools, and reduce the likelihood of successful cyberattacks. In the meantime, many CISOs are stuck dealing with advanced threats and an untrained workforce. It’s no surprise 90% find themselves under increased pressure. Check out the Mind of the CISO: Decoding the GenAI Impact eBook for more insights. https://bit.ly/4bjT5dk

Thank you to everyone who made the Gartner Security & Risk Management Summit a success! From showcasing our solutions at the Trellix booth to SVP, Strategy & Services Sean Morton’s session on building cyber resilience, we loved connecting with so many new and familiar faces. #GartnerSEC

At our upcoming virtual summit, our CISO Harold Rivas and Charles Lerch, Cyberuptive CXO, will cut through the buzzwords and offer a frank perspective on GenAI-powered alert investigation. You don’t want to miss this first-hand account — register today!

How can CISOs leverage AI to combat one of the longest-standing IT security risks — human error? Find out in this Security Boulevard article, featuring insights from our Mind of the CISO: Decoding the GenAI Impact survey.

It’s time to take control of your attack surface and identify who's targeting you. Register today and join our upcoming virtual workshop to receive your own Threat Intelligence dossier and actionable insights.

We’ve talked a lot about the monumental pressure CISOs face today — now, it’s time to lighten the mood. Here are 7 email subject lines that would make a CISO’s day a little brighter. 📧✨ 1. “APPROVED: Budget increase for enhanced cybersecurity infrastructure” 2. “Calendar Hold: Mandatory AI safety training for ALL employees” 3. “Board meeting on XDR integration: Request for your input” 4. “Incident response drill results: Zero downtime achieved” 5. “Flagging a suspicious attachment. P.S. I didn’t open it.” 6. “Multi-factor authentication implemented company-wide" 7. “Espresso pods are restocked in the employee lounge” We want to know... how would YOU make a CISO’s day? Harold Rivas, any ideas?