The May 2020 HP-Bromium Threat Insights Report highlights notable threats isolated by HP Sure Click in March and April 2020. The report discusses recent malware campaigns, techniques and mitigations so that security teams can better understand the threat landscape and defend their environments. Highlights from May’s report include a breakdown of the top COVID-19-related email lures our customers have seen, how attackers bypass static detection using encrypted documents, and a discussion of Maze ransomware.
Download: May 2020 HP-Bromium Threat Insights Report
The post HP-Bromium Threat Insights Report, May 2020 appeared first on Bromium.
The Hunting ELK or simply the HELK is an Open-Source Threat Hunting Platform with advanced analytics capabilities such as SQL declarative language, graphing, structured streaming, and even machine learning via Jupyter notebooks and Apache Spark over an ELK stack.
This project was developed primarily for research, but due to its flexible design and core components, it can be deployed in larger environments with the right configurations and scalable infrastructure.
Goals of HELK Open Source Threat Hunting Platform
- Provide an open-source hunting platform to the community and share the basics of Threat Hunting.
Read the rest of HELK – Open Source Threat Hunting Platform now! Only available at Darknet.
Welcome to the July 2020 edition of the HP-Bromium Threat Insights Report! Highlights from July’s report include a discussion of how an Aggah malicious spam campaign targeted businesses in Europe, North America and Asia, how attackers use compromised infrastructure to bypass reputation-based security controls, and recent QakBot and WannaMine campaigns. The report describes recent malware campaigns, techniques and mitigations so that security teams can better understand the threat landscape and defend their environments.
Have you joined the Threat Sharing Program?
The Threat Insights Report is made possible by the sharing of threat data by our user community. If you want to contribute, simply enable the Threat Forwarding feature in your HP Sure Controller. Sharing is secure, and when Bromium experts spot a notable trend, we will share it in the next Threat Insights Report.
Read all Threat Insights Reports
You can access our previous Threat Insights Reports here.
Download: July 2020 HP-Bromium Threat Insights Report
The post HP-Bromium Threat Insights Report, July 2020 appeared first on Bromium.