A new report from global intelligence firm IntSights, Under the Hood: Cybercriminals Exploit Automotive Industry's Software Features, has highlighted the cyber-threats facing manufacturers in the automotive industry, shining a light on how and why hackers are looking to infiltrate automobile infrastructure.
Car manufacturers offer more software features to consumers than ever before, and increasingly popular autonomous vehicles that require integrated software introduce security vulnerabilities.
IntSights Reveals Automotive Software Features – Cybersecurity Points of Exposure in New Research Report
Charity Wright, former NSA Chinese espionage expert, and current threat researcher with global threat intelligence firm, IntSights, has released a new analysis on Chinese influencer campaigns.
Gone are the days when a user is defined solely by a username and password. In today’s online world where everything is tracked, safeguarding your digital identity is crucial both for individuals and for businesses. Solutions already exist to help safeguard digital identities, but the threat of identity theft is increasing steadily and it’s uncertain who is going to win the battle.
Annual list of the world’s hottest pure-play cybersecurity companies
Vietnam’s growing reputation for cyber espionage has seen cybersecurity firms accuse the country’s state-sanctioned hackers of being responsible for attacks on everything from Toyota to the ASEAN Secretariat.
Threat actors have been using cyber-disguises to keep their true intentions secret, according to a report published today by Optiv Security. The CTIE comprises contributions from Optiv’s Global Threat Intelligence Center (gTIC), cyber threat intelligence company IntSights, and Carbon Black, a leader in cloud endpoint protection.
This week, a former Yahoo employee pleaded guilty to hacking into the email accounts of more than 6,000 users, looking for porn. Companies need to protect themselves from similar security breaches. Here's what to do.
Discussing the many ways that some governments in the world run manipulation campaigns online, Charity Wright, a current threat researcher with IntSights, and former NSA Chinese espionage expert, touches on some important issues. In an interview with TechNadu, Wright goes into more details, trying to help us better see the reality we live in.
Hackers are generally assumed to be going after bank account numbers or financial institutions. But a recent study from cybersecurity firm IntSights shows hackers are now taking aim at healthcare institutions for lucrative information to steal.
The ongoing protests in Hong Kong pose a threat to China’s reputation, prompting the Chinese Communist Party to deploy a workforce of thousands in a propaganda counter-offensive. The Chinese government responded to the protests from June onwards with a large-scale psychological operation designed to alter Western perception and to save face in front of the world, according to a new study threat intelligence firm IntSights.
A report from a former NSA operative says countries across the world are still adjusting to the new reality of sophisticated cyberwarfare.
A key part of security efforts is determining the value of information and goods on the black market in order to better gauge the risks for certain types of data. Two reports, one from Armor and another from IntSights, reveal what’s being sold on the black market and for how much in U.S. dollars.
About one-third of healthcare databases stored both locally and in the cloud are currently exposing sensitive patient data; IntSights researchers found one database leaking EHR records.
When people think about hackers and their targets, most assume cybercriminals are after bank account numbers or financial institutions. But a new study from cybersecurity firm IntSights shows hackers are now honing in on healthcare institutions for lucrative information to steal.
Cybercriminals are "upping their game" by stealing and then auctioning off on the dark web administrator access credentials to healthcare organizations' clinician and patient portals, says Etay Maor, chief security officer at threat intelligence firm IntSights.
The cybercriminal underground has long had its eye on the health care industry. Historically speaking, the financial industry was the primary target, but it didn’t take long for cybercriminals to recognize the goldmine that is the health care industry. There are three key reasons the health care records are a lucrative target.
A website on the dark web named Richlogs has emerged as a competitor to the Genesis market, selling digital identities. By collecting and stealing “digital fingerprints” from users’ web browsers, including IP address, web traffic, and operating system information, hackers can impersonate online users and access their sensitive data, include bank accounts, tax sites, and social media accounts.
Security professionals obviously are aware of the need to keep up with the latest threats, while concerns about specific geographic regions are usually just a subset of things to keep in mind. However, Russia-based risks should be on security teams’ radar screens, especially those doing business in or with enterprises from this region, said security analysts from IntSights.
The implications are frightening, as it gives anyone the ability to intrude and mimic a user identity online. An overview of top dark web and the digital identities marketplace comprised of stolen “digital fingerprints” of a user’s web browsing device (i.e., IP address, OS information, time zone, user behavior).
China’s spies are waging an intensifying espionage offensive against the United States. Does America have what it takes to stop them?
A new report from external threat intelligence firm IntSights Inc. details the rise of a “dark web” forum specializing in a digital identities market that offers stolen “digital fingerprints” of a user’s web browsing history.
A new IntSights report, “Digital Browser Identities: The hottest new black market good,” cites “a particularly strong rise” in an illicit dark web market that emerged this spring as a new source for stolen “digital fingerprints.”
IntSights has released the company’s research brief “Digital Browser Identities: The Hottest New Black Market Good” which provides an overview of the Richlogs marketplace and the digital identities market. Ariel Ainhoren provides the details.
A new digital fingerprint marketplace called Richlogs is on the rise on the dark web at the moment, competing directly with Genesis.
Captured through malware and sold on the Dark Web, the "digital fingerprints" of your web browsing can be used to impersonate your identity online, as described in a new report from IntSights.
BioStar 2's public data exposure could spell disaster for users. The exposure of a centralized biometric database highlights a deeper problem, warned Charity Wright, cyber-threat intelligence analyst and researcher at threat protection company IntSights Cyber Intelligence.
Amid a violent crackdown on protests in Hong Kong, experts are raising concerns about technology reportedly being used by the Chinese government to monitor demonstrations.
A new report by cyber firm IntSights on the dark web in Russia describes an advanced criminal hacking community in Russia and the Commonwealth of Independent States that operates with impunity -- as long as it's attacking abroad and steering clear of Russian government and industry targets.
Russia's Sovereign Internet law looks to re-model the country's self-contained internet system on China's. That's according to the latest report by cyber intelligence firm IntSights, which analyses the implications of Russia's upcoming internet laws, particularly its 'Sovereign Internet' law, on consumers, businesses, and cyber crime.
Revealing new research around the Russian dark web, Ariel Ainhoren, research team leader at IntSights told Infosecurity that local websites to Russia were a “unique part of the dark web” due to local laws and government influence.
Russia is the birthplace of the Dark Web, and its tech-savvy population includes some brilliant hackers. We talk to two researchers who will present a report on the topic here at Black Hat.
Allegations that sophisticated Chinese and North Korean based criminal groups are targeting Western governments and corporations aren’t new. But a report out today says the leading threat actors come from Russia. “There is no other hacking community that can boast such a breadth of knowledge, resources, and manpower,” says the report from New York-based IntSights Cyber Intelligence.
The introduction of Russia's Sovereign Internet rules is having an impact on the way criminal hackers around the world do business. This is according to security house IntSights, which says that the law, set to become official in a few months, will force many hacking groups to change the way they operate both in Russia and in other countries.
Governments around the world are taking steps to direct and manage the use of the internet within their borders. Geopolitical situations and apprehension about data privacy give way to restrictions for commerce and civilian internet use. In most cases, actions to restrict access to the global internet is meant to enhance security for ingenuous users and protect businesses. Whether the reason is political or security in nature, laws governing internet users are growing in popularity as are the consequences and global impact of those measures.
Cyber threat intelligence firm IntSights issued a threat brief on the growing Vietnamese cybercriminal landscape. It also mentioned state-affiliated or state-aligned groups APT32 (OceanLotus) and APT-C-01 (Poison Ivy), as well as local cyber legislation that is promoting the development of cyber subterfuge among Vietnamese young people.
Security has long been a thorn in the side of IoT. But what are the ramifications of the uptick in nations aiming to control data flow within their borders?
The Chinese government is enabling law enforcement and military to monitor citizen behavior through advanced artificial intelligence and video surveillance, according to Charity Wright, former NSA and cyber threat intelligence analyst, IntSights Cyber Intelligence.
Sean Martin and Marco Ciappelli of ITSP Magazine chat with Charity Wright 雷倩, Cyber Threat Intelligence Analyst at IntSights, as part of their RSA Conference 2019 APJ event coverage from the Marina Bay Sands in Singapore.
Vietnam is one developing nation believed to be using cyberattacks to generate money. As banks and financial institutions are increasingly targeted by financially motivated malicious actors the world over, protecting these organizations from cyberthreats is increasingly important, yet expensive.
Vietnam-linked hackers have ramped up their efforts in recent years, attacking foreign economic competitors and governments alike.
The country's rapid economic growth and other factors are driving an increase in cybercrime and cyber espionage activity.
Vietnam has rarely been associated with cybercrime activity in the same way other Asian nations, such as China, North Korea, and Iran, have in recent years. But that could change soon.
A new report by IntSights identifies Vietnam as a rising cyber threat due to increased activity of state-backed hacking groups
That cybercriminals target financial services more than any other industry isn’t surprising. But the dramatic explosion of stolen credit card data over the last year is setting off some alarm bells.
Hackers are targeting financial services more than any other industry - and the attacks are often successful. Threat intelligence company IntSights released a study on the cyber threats that banks and financial services face, which found that they were the targets of 25.7% of all malware attacks last year - more than the other 27 industries tracked.
Hackers are becoming a bigger threat to banks and financial institutions.
A new report into the financial services threat landscape shows that there has been a huge increase in the number of banking credential leaks, while instances of compromised credit cards increased by 212 percent year-on-year.
IntSights has released a new report on the threat landscape for the financial sector. It shows that the number of compromised banking credentials surged last year, and the same is true for stolen credit card details.
A cybersecurity firm found a surge in credential leaks and compromised credit cards in 2018.
Financial services firms saw upticks in credential leaks and credit card compromise as cybercriminals go where the money is.
Research published on Monday by cyber threat intelligence company Intsights paints a bleak picture for cybersecurity across the global financial services industry.
The dark web is a haven for stolen data, personal and financial information - and keeps fraud threats alive for years.
A study of a stolen credit card by Riskified and IntSights reveals how scammers use card information and how merchants can guard against this type of fraud.
The obviousness of bad actors' actions means they are "either very smart or very stupid," said Ariel Ainhoren, head of threat research at IntSights.
AirBnb faces sanctions in Texas over settlements ban; Via’s Tel Aviv public transport service to launch in late March
It has been going for six years, but Dream Market is closing down according to admins who left a message telling people to go use a partner platform.
One of the most popular dark web marketplaces says it will cease operations next month, an announcement that came on the same day international authorities said they’d spent eight months investigating digital drug dens.
Cyber-criminals have long relied on the Dark Web’s largest marketplace, Dream Market, to buy and sell illicit goods, but today threat researchers at IntSights and Flashpoint found that the notorious online store is scheduled to shutdown on April 30, 2019.
The hospitality sector cyber-risk is highly relevant to the enterprise ast business travel is an inescapable reality for many. It is consistently at the top of the data breach charts - a magnet to those who covet data.
Fraud in travel is on the up, according to a number of recently released reports from experts in the field.
A hacker who stole close to 620 million user records from 16 websites has stolen another 127 million records from eight more websites, TechCrunch has learned.
Police across the globe have successfully infiltrated leading dark web criminal markets. The result is that the trade in illegal drugs, stolen credit cards and indecent images of children is shifting to encrypted mobile phone apps. The crooks believe their business is protected by 'uncrackable' technology. So what should Government and the telecoms companies do to ensure criminals do not exploit secure encryption?
Dating can make people feel vulnerable enough, especially in the run up to Valentine’s Day, without hackers blocking access to their OkCupid accounts and potentially tapping their personal information.
2018 was the year that raised the alarm in earnest about potential vulnerabilities in the supply chain for enterprise computing systems. But with such diverse networks and widespread dependence on third parties, how can organizations expect to plug all potential leaks? Karen Epper Hoffman reports.
Merchants should expect even more consumers to shop online this holiday shopping season. They also should expect even more fraud attempts.
Having the right mix of tools, automation, and intelligence is key to staying ahead of new threats and protecting your organization. There's a lot of talk about "cyber threat intelligence" these days, but very few organizations have fully implemented and operationalized a program.
Despite the fact that electronic health records (EHR) contain extremely sensitive information about individuals, it is shockingly easy for malicious actors to get their hands on them, Intsights security researchers have discovered.
Hackers are using the Dark Web to buy and sell personally identifiable information (PII) stolen from healthcare organizations, and exposed databases are a vulnerable attack surface for healthcare organizations, according to a new cybersecurity research report.
Up to 30 percent of healthcare databases are exposed online, according to a new report. The report, written by Ariel Ainhoren, a security researcher at the cybersecurity firm IntSights, found how easy it is for someone to search for and find vulnerable or exposed databases on the dark web and elsewhere.
Cybercriminals are increasingly targeting retailers and their customers through digital and social channels as retailers leverage new channels for increased revenue opportunities.
An almost tripling of the number of false retailer websites designed to phish for customer credentials and black-market listed stolen goods for resale are some findings in a new report.
Retailers may be leveraging more digital channels to increase revenue opportunities, but these are also fertile ground for cyber-thieves. This was according to “The Retail and E-commerce Threat Landscape Report” from e-commerce fraud-prevention firm Riskified, and IntSights Cyber Intelligence, a provider of enterprise cyber threat intelligence and mitigation solutions. The study, which analyzed the transaction-level results of hundreds of millions of purchases between Q3 2017 and Q3 2018, revealed new tactics used by fraudsters.
Researchers note massive increases in retail goods for sale on the black market, retail phishing sites, and malicious applications and social media profiles. A massive year-over-year increase in retail fraud is spelling bad news for shops and shoppers ahead of the holiday season, according to a new study focused on cybercrime in the sector.
Be careful, online shoppers. Fake retail websites can harvest your personal information and credit card numbers, warns a new report. The number of fake retail websites designed to phish for customer information is on the rise, according to a joint report published Wednesday by e-commerce fraud prevention company Riskified and cyber intelligence company IntSights.
It's no question that online shopping has continued to grow over the past few years, making it easy to order anything you like from practically wherever you like.
For hackers, the internet is the getaway car and malware is the firearm. Stealing money or data is easier than it was in the 1930s thanks to technology.
For thousands of years, humans have worked to collect intelligence on their enemies. Intelligence gathering is not a new practice; in fact, it is one of the oldest war tactics dating back to biblical times, when warlords and army commanders used it to gain advantages over their rivals.
Founded in 2015, IntSights is changing the way companies’ approach, consume and operationalize threat intelligence.
China has long been judged to have one of the most prolific, best funded hacking apparatus of any nation bar the US and Russia. Its PLA military units and shadowy Ministry of State Security (MSS) have engaged in countless cyber-espionage operations over the past decade, stealing IP, trade and state secrets designed to give the country an economic and geopolitical advantage.
A duality of messages permeated last week's Black Hat and Def Con conferences: Cybersecurity tools are improving, business and government entities alike are better organizing themselves, and yet, the cyber threat environment continues to darken and grow more dangerous.
A new report sheds light on the little-understood dark web markets in Asia, showing how they’re driven by cultural differences and local government policies.
To gain a better understanding of Asian onion sites and black markets, researchers from IntSights embarked on a six-month long investigation and analysis.
The Chinese hacking community operates by-and-large out in the open, using code words to avoid government scrutiny and benefitting from state support when attacks are aimed outside the country, according to a new report.
Internet underground outside the West takes a different tone. The concept of the "dark web" in Asia is way different to what peeps in Europe and the Americas are used to.
While the vast majority of Asia-focused cybersecurity research examines government-backed threats, a new report shows that the region’s dark web is becoming a fertile training ground for independent hackers to learn more skills and trade new exploits.
Cut-rate prices for powerful cyber attack tools, hacktivist sites with stolen bounty ranging from FBI and DHS personnel files to data from the cell phone of Paul Manafort’s daughter, and Chinese sites offering – for yuan, not bitcoins – a full gamut of illicit services and products were among the findings in a report released here today that offers a deep dive into the “dark web” in Asia.
The Asian Dark Web is one of the most difficult to penetrate. “Many people have heard of it, while some might even have the courage to install the TOR browser and visit the dark web for themselves. Whether you’ve visited the dark web or not, it’s important to understand how it’s used by cybercriminals and different underground communities so that you can leverage it as a source of threat intelligence,” explains Itay Kozuch.
Take a look at how 14 DRP vendors stack up in this emerging market. You will find detailed vendor profiles and analysis evaluating how well they monitor and mitigate organizations’ external, digital risk environments.
An IntSights report also finds a 24% increase in mobile banking malware infections in one year. The shadier parts of the internet are bursting at the virtual seams with account logins, card numbers and other stolen financial data put up for grabs, according to a new report from cyber intelligence platform company IntSights.
The number of hacked U.S. credit cards whose information was offered for sale to other criminals on the dark web jumped by about two-thirds in the first half of this year, according to a cybersecurity research firm.
The number of hacked U.S. credit cards whose information was offered for sale to other criminals on the dark web jumped by about two-thirds in the first half of this year, according to a cybersecurity research firm.
It would be hard to walk into to a major business and walk away with all its sensitive information. But sometimes that's not the case when it comes to online networks.
Some hacks are serendipitous events for skiddies who happen across a website with an easily exploitable common vulnerability. Others, especially the major breaches of major enterprises, are planned and executed with care.
What type of threats will financial services and banking organizations face in 2019? According to IntSights Cyber Intelligence, they should be prepared for breaches effected through compromise of established vendor software or SaaS products, and vulnerable third-party, open source software implemented in the applications they use.
New study examines how financial services information is sold and shared in the Dark Web.
New Report Reveals New Malware, New Threats, New Threat Actors. Much of the attention around Chinese hacking is directed toward the so-called advanced threat groups suspected to have links to the country's government.
The digital revolution has transformed the way businesses operate across the globe. However, digitally stored information is prone to hacking and manipulation by cyber criminals. The concern is validated by the fact that more than 5.1 million records are compromised due to data breaches every day.
The last US presidential election revealed the dangers and the difficulties of prognostication. But that doesn't deter those determined to look ahead at what we may face in 2018.
Global cybersecurity firm IntSights Cyber Intelligence Ltd says it has identified nearly 1,500 online security threats – from the so-called “Dark Web” – aimed at casino resorts within a six-month period.
The report examines the current internal and external threats facing the Gaming and Leisure sector, specifically looking into issues with leaked credentials, registered fake or phishing domains, and identifying employees on target lists of malicious actors. The report also looks at the influence of the dark web in increasing attacks on the gaming industry.
Cyber threat detection will become more automated and advanced in threat classification and analysis. The next stage in the utilization of dark web monitoring will be the automation of HUMINT (human intelligence) - the interactions with threat actors necessary for deeper investigations.
Monitoring the dark web to see if your data is being sold there is risky, but solutions and services are available to help.