Trellix

Level up your endpoint security by streaming the Trellix TechInsight Quarterly: Product Showcase. This on-demand webinar, with expert demos, explores the evolution of endpoint security to encompass XDR, NDR, and more. Learn about industry trends and what they mean for you. https://bit.ly/3OZPok7

100% alert detection does not have to be a distant goal. 👀 Explore the latest advancements in AI to improve threat detection and enhance alert investigation by joining our virtual workshop. Achieve hyperautomation and register for your region today. https://bit.ly/4d5xRkC

As organizations recover from the CrowdStrike outage, information sharing is critical. 🤝 Our Advanced Research Center is committed to providing timely updates on related indicators of compromise — explore our insights preview page for the latest on emerging threats and who they impact. https://bit.ly/3zUxL0k

Our very own Max Kersten will share his method for tackling thousands of unknown functions at #DEFCON 2024. Don't miss his talk, "No Symbols When Reversing? No Problem: Bring Your Own," on August 9. https://bit.ly/3WKVKrH

There is no denying the meteoric rise of GenAI. In the latest CyberThreat Report, our Advanced Research Center team details how threat actors are currently utilizing it. Read for more details. https://bit.ly/3yTSG33

Top-tier recovery following the CrowdStrike outage is not only available for Trellix customers. Any organization can rely on our support and services teams to help you restore and recover at any stage. Get help and learn about how #TeamTrellix prioritizes responsible security to maintain transparency and choice for our customers in times of crisis. 👉 https://bit.ly/3StfAFt

Are you eager to grow your analyst mindset with #TeamTrellix? Max Kersten will host his DotNet Introduction workshop on August 5th at the Westin Las Vegas Hotel & Spa for The Diana Initiative Annual Conference 2024.  Don’t miss the chance to enhance your understanding of DotNet principles and develop an expert analyst mindset. #TDI2024 Register now: https://bit.ly/3LIQPRI

Trellix Endpoint Security achieved 1️⃣0️⃣0️⃣% across all categories in the latest SE LABS Ⓡ Endpoint Security for Enterprise test, providing superior protection and rising above competitors. Our #EDR deserves a gold medal! 🥇 Read the full insights reported here. https://bit.ly/3SAKnAm

Itching to see the latest cybersecurity threats? We are back with a round-up just for you. 😎 https://bit.ly/46JIoxB 1️⃣ Threat Profile: Remcos RAT Threat level: High 🟥   Remcos is a remote access technology that is developed and maintained by the cyber security firm BreakingSecurity. It is advertised as a legitimate tool for the remote control and surveillance of a target machine. 2️⃣ Threat Profile: Global Outage-Related Indicators Threat level: High 🟥   CrowdStrike is still experiencing a significant outage affecting Windows users globally due to a faulty component update within Falcon Sensor. Threat actors continue to exploit the chaos using various tactics. 3️⃣ Threat Profile: APT41 Adds New Malware To Compromise Entities Across Multiple Sectors Threat level: Medium 🟧   Mandiant discovered an APT41 intrusion in which the threat actor used ANTSWORD and BLUEBEAM web shells on a Tomcat Apache Manager server that has been active since 2023. 4️⃣ Threat Profile: FIN7 Operations Reemerge With Updated EDR Bypass And Attack Automations Threat level: Medium 🟧   A recent version emerged that utilizes novel techniques to disable system security solutions by leveraging the Windows built-in driver ProcLaunchMon.sys. 5️⃣ Threat Profile: Andariel Threat level: Medium 🟧   Andariel is an APT group linked to North Korea that employs distinct tools and techniques compared to other North Korean-aligned groups, such as Kimsuky, Bluenoroff, and Lazarus. 6️⃣ Threat Profile: Latrodectus Threat level: Medium 🟧   Latrodectus is a downloader malware that was discovered at the end of 2023. The main goal of Latrodectus is to deploy further malware, such as Danabot or IcedID. 7️⃣ Threat Profile: Ticket Heist Campaign Aimed At Olympic Games And Sporting Events Threat level: Medium 🟧   Researchers uncovered a fraudulent campaign targeting Russian-speaking users, Eastern European countries, and English-speaking individuals for specific sports events. 8️⃣ Threat Profile: Stargazer Goblin And Their GitHub Ghost Network Threat level: Low 🟨   Researchers identified the Stargazers Ghost Network, a network of GitHub accounts used to distribute malware and malicious links through phishing repositories. 9️⃣ Threat Profile: Daggerfly’s Updated Arsenal Includes Malware That Targets Multiple OS Versions Threat level: Low 🟨   The espionage group tracked as Daggerfly recently updated its toolkit and has been identified as deploying new variants of malware targeting organizations in Taiwan and a U.S. NGO in China. 🔟 Threat Profile: Unveiling The Vigorish Viper Technology Suite Threat level: Low 🟨   Researchers unveiled a technology suite linked to Chinese organized crime, money laundering, and human trafficking across Southeast Asia.

Planning to make it to #BHUSA 2024 in Las Vegas, NV? Be sure to take part in Max Kersten’s hands-on session unraveling real-world wipers and malware analysis. Aspiring analysts of all levels are welcome to join! More details here. https://bit.ly/3LN7MdV