Government and diplomatic entities in the Middle East and South Asia are the target of a new advanced persistent threat actor named GoldenJackal.
Russian cybersecurity firm Kaspersky, which has been keeping tabs on the group’s activities since mid-2020, characterized the adversary as both capable and stealthy.
The targeting scope of the campaign is focused on Afghanistan, Azerbaijan, Iran, Iraq, Read More
Related Posts
![FBI Dismantles QakBot Malware, Frees 700,000 Computers, Seizes $8.6 Million](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiTFY_Y_yq_eYT1SjyFK5CQDe4Euoyq5lfF41y5USoQm2DWWgPbsS6t_24qCyANY723aVHMkBvU3Z7PensLJW5_j6UGTjAhqZl4bh6dIfd9O_ynjGuoEVPmW4k41qwb2OLQOuQWZykspk5OeCrIsdJyD3srYnj0j5SCwuaoJrFbHZa6bmc6YPVTOMDpR9nu/s72-c/botnet-malware.png)
FBI Dismantles QakBot Malware, Frees 700,000 Computers, Seizes $8.6 Million
FBI Dismantles QakBot Malware, Frees 700,000 Computers, Seizes $8.6 Million
A coordinated law enforcement effort codenamed Operation Duck Hunt has felled QakBot, a notorious Windows malware family that’s estimated to have compromised over 700,000 computers globally and facilitated financial fraud as well as ransomware.
To that end, the U.S. Justice Department (DoJ) said the malware is "being deleted from victim computers, preventing it from doing any more harm," adding Read More
The Hacker News | #1 Trusted Cybersecurity News Site
![Global Retailers Must Keep an Eye on Their SaaS Stack](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjwO0IMYUiDNFCw3_UrvUCiJsOMQKlf83d7YcifrRY7onMilnvQC-ISgULegKkLm-jWpXoud9gWWGqiWq_mf3SsffTfqwPICDWnYxghw8UsLhyaxsICP7vq46cwP718gM4n1becfxlF4T4PFkq5YS978iqHTFbgzofB7vTC1w5KJ72APY8anNpFSSJZnb3p/s72-c/job.jpg)
Global Retailers Must Keep an Eye on Their SaaS Stack
Global Retailers Must Keep an Eye on Their SaaS Stack
Brick-and-mortar retailers and e-commerce sellers may be locked in a fierce battle for market share, but one area both can agree on is the need to secure their SaaS stack. From communications tools to order management and fulfillment systems, much of today’s critical retail software lives in SaaS apps in the cloud. Securing those applications is crucial to ongoing operations, chain management, Read More
The Hacker News | #1 Trusted Cybersecurity News Site
![AttackGen : AI-Based Incident Response Tool With MITRE ATT&CK Framework](https://github.com/mrwadams/attackgen/raw/main/images/screenshot.jpg)
AttackGen : AI-Based Incident Response Tool With MITRE ATT&CK Framework
AttackGen : AI-Based Incident Response Tool With MITRE ATT&CK Framework
[[{“value”:”
In the ever-evolving landscape of cybersecurity, the need for advanced tools to simulate and test incident response is critical.
AttackGen, a cutting-edge incident response testing tool, has emerged as a game-changer in this domain.
Leveraging the power of large language models and the comprehensive MITRE ATT&CK framework, AttackGen offers a unique approach to preparing organizations against sophisticated cyber threats.
Developed by Matthew Adams, a security architect at Santander UK, AttackGen is designed to generate tailored incident response scenarios.
AttackGen : AI-Based Incident Response Tool
These scenarios are based on user-selected threat actor groups and are customized to an organization’s specific size and industry.
This level of personalization ensures that the scenarios are relevant and challenging, providing a realistic training environment for security teams.
Document
Free Webinar : Mitigating Vulnerability & 0-day Threats
Alert Fatigue that helps no one as security teams need to triage 100s of vulnerabilities.
:
The problem of vulnerability fatigue today
Difference between CVSS-specific vulnerability vs risk-based vulnerability
Evaluating vulnerabilities based on the business impact/risk
Automation to reduce alert fatigue and enhance security posture significantly
AcuRisQ, that helps you to quantify risk accurately:
The tool’s integration with the MITRE ATT&CK framework allows users to create scenarios that focus on particular segments of the cyber kill chain or specific tactics like ‘Lateral Movement’ or ‘Exfiltration’.
This feature is particularly beneficial for mature organizations with advanced threat intelligence capabilities, enabling them to test their defenses against the latest techniques used by threat actors they are monitoring.
AttackGen’s latest version, v0.2, introduces several new features, including the ability to generate custom scenarios based on ATT&CK techniques and a user feedback mechanism to gain insights into model performance over time.
The improved error handling and user interface enhances the overall user experience, making it easier for teams to navigate and utilize the tool effectively.
One of the standout features of AttackGen is its flexibility. Users can choose to use either the OpenAI API or Azure OpenAI Service to generate incident response scenarios.
This choice allows organizations to select the most suitable model for their specific use case and ensures that application descriptions and other data remain within a secure environment, which is crucial for handling sensitive information.
The tool is also integrated with LangSmith, a powerful debugging, testing, and monitoring tool for model performance.
LangSmith captures user feedback on the quality of scenarios generated, providing valuable insights into model performance and user satisfaction.
AttackGen is available as a Docker container image, simplifying deployment and running the application in a consistent and reproducible environment.
This ease of deployment is particularly useful for users who want to run AttackGen in a containerized environment or deploy the application on a cloud platform.
As cyber threats continue to grow in complexity and frequency, tools like AttackGen are essential for organizations to stay ahead of attackers.
By providing a platform for rigorous testing and scenario-based training, AttackGen helps security teams sharpen their skills and improve their incident response capabilities, ultimately strengthening their cybersecurity posture.
Stay updated on Cybersecurity news, Whitepapers, and Infographics. Follow us on LinkedIn & Twitter.
The post AttackGen : AI-Based Incident Response Tool With MITRE ATT&CK Framework appeared first on Cyber Security News.
“}]] Read More
Cyber Security News