APTs Archives - Guardicore - Data Center and Cloud Security

Posts

Learning from NSA’s Master Hacker

February 2, 2016/0 Comments/in Blog /by Daniel Goldberg

“The big question you need to think about is if you have an intrusion somewhere in your network, can you then defend against this lateral movement?” – Rob Joyce, Chief of the TAO

Rob Joyce, head of the NSA’s Tailored Access Operations (TAO) elite division, recently spoke to a large audience at the Usenix Enigma security conference in San Francisco. Joyce talked about TAO’s process for exploiting victim networks. This was the first public talk made by any member of the NSA’s team which is considered among the best cyber-warfare intelligence gathering organization in the world.

Head of NSA’s Elite Hacking Unit: How We Hack

January 29, 2016/0 Comments/in Industry News /by Dave Burton

Inside the notoriously secretive National Security Agency is an elite unit made up of some of the best hackers on the planet, charged with breaking into computer networks around the world. Exactly how the Tailored Access Operations (TAO) cell works is a closely-held secret — despite some recent leaks — but in a rare public appearance, TAO’s chief shed some light on how America’s top cyber spies do their thing.

Read Article

Illegal Mining, the Cyber Version

January 21, 2016/0 Comments/in Blog /by Daniel Goldberg

Illegal mining is a serious problem in the real world. Lately, it has also become popular with cyber attackers who manage to mine digital currency through untargeted attacks. Untargeted attacks are a common problem, not as attention grabbing as APTs, but still responsible for a large percentage of attacks. In this post, using Guardicore’s Data Center Security Suite, we’ll take a look at yet another type of untargeted attacks, as we first reported with Alex. Our attacker “galaden666” is a Ukrainian gamer who makes money by mining a new digital currency called Litecoins (a variant of Bitcoins) on compromised servers by stealing their CPU cycles.

Caught red handed – Alex

December 2, 2015/0 Comments/in Blog /by Daniel Goldberg

Opportunistic hackers are far from the limelight these days but they still exist and can cause large amounts of damage if they manage to break into your systems. We’ve recently observed our Data Center Security Suite catch such a hacker, an “Alex” from Romania who has kindly enough supplied his own name and private domain for publicity.

GuardiCore Announces General Availability of its Data Center Security Suite

October 12, 2015/0 Comments/in News & Press Releases, Press Releases /by Dave Burton

New Breed of Security Solution Detects Active Breaches inside Data Centers and Clouds Where Legacy Approaches Fall Short

San Francisco, CA – GuardiCore, a leader in internal data center security, today announced availability of its security solution that leverages advanced threat deception technology and a proactive honeypot approach to protect enterprise data centers and clouds from advanced threats that are increasingly breaching legacy security defenses. The GuardiCore Data Center Security Suite is built from the ground up for today’s modern data centers and clouds, providing unparalleled visibility, active breach detection and real-time response for both virtual and physical environments, and scales to support the performance requirements for high traffic data center environments. Read more →

5 Reasons Why Ransomware Will Attack Data Centers

August 31, 2015/0 Comments/in Blog /by Misha Yaverbaum

In the first part of our blog about ransomware, we reviewed its history and examined how ransomware had advanced technologically over time. In this post we would like to discuss the future of this cyber attack and suggest that it will increasingly target corporate data centers with APT-based campaigns.