In its research, Trustwave SpiderLabs found that honeypots focused on tracking activity on database servers based in Russia, Ukraine, Poland, the UK, China, and the U.S. found that Microsoft SQL (MSSQL) made up 93% of all attack activity. SC MEDIA
Clop claims hundreds of MOVEit vulnerability victims
The prolific threat actor is responsible for two of the three high-profile, actively exploited vulnerabilities in file-transfer services so far this year. CYBERSECURITYDIVE
More Microsoft 365 phishing attacks are using this dangerous new method - here's what you need to know
Trustwave SpiderLabs found a threat actor abusing Microsoft’s Rights Management Services (RMS) to deliver links to fake landing pages to their victims. The attacks are highly targeted and quite difficult to mitigate. TECHRADAR
The Patent and Trademark Office wants to improve the security of its crown jewels
The U.S. Patent and Trademark Office (USPTO) recently expanded a contract with Trustwave to improve the cybersecurity of its main databases, as well as move the agency to that all-important zero-trust architecture. FEDERAL NEWS NETWORK
Top browsers targeted by new malware to steal your sensitive data
Discovered by Trustwave SpiderLabs, Rilide, can do a variety of malicious actions, including monitoring browsing history, taking screenshots on people's devices, and stealing cryptocurrency using scripts injected into websites.
Hackers use Rilide browser extension to bypass 2FA steal crypto
Trustwave SpiderLabs researchers discovered a new malicious browser extension called Rilide, that targets Chromium-based products like Google Chrome, Brave, Opera, and Microsoft Edge.
How IT leaders can prepare organisations for penetration testing
To prevent cyber security breaches, leadership teams need to focus on how their organisations detect, manage, and recover from cyber attacks. The first and most crucial step is understanding where the organisation is vulnerable.
U.S. Patent and Trademark Office Adds Zero-Trust Capabilities
With Trustwave’s DbProtect, threat monitoring and advanced user rights review will lift the burden on USPTO security teams to prioritize issues with on-premises and cloud databases.
Trustwave Earns U.S. Government Contract for Database Security
The United States Patent and Trademark Office (USPTO) has awarded an expanded database security contract to the government solutions division of Trustwave, a Top 250 MSSP.
Trustwave Teams Up with Trellix for Better Managed Security
Cybersecurity companies Trustwave and Trellix say they want to help end users simplify their systems in the face of a complicated threat environment.
What Can Security Teams Learn From a Year of Cyber Warfare?
Trustwave security researcher Jeannette Dickens-Hale reflects on the ongoing cyber war and what security leaders can learn from the past 12 months.
Why Data is the New Uranium
Trustwave’s Nick Ellsmore shares why thinking of data as being as valuable as uranium, not oil, requires a complete shift in mindset.
Trustwave Government Solutions Brings Together PAN Cortex XDR Capabilities and MDR Expertise
Trustwave Government Solutions (TGS), a managed detection and response (MDR) provider and subsidiary of Trustwave Holdings, has announced its status as a Palo Alto Networks Cortex XMDR Specialization partner.
Money Lover breach shows the dangers of leaky APIs
Trustwave SpiderLabs discovered a data leakage vulnerability in a popular financial management application illustrates the danger of using application programming interfaces that are not watertight.
MDR Resonating as an Option with Both Channel and Customers
One area tipped for growth by analysts and vendors is managed detection and response – the challenge for partners is to keep on top of training and vendor relationships. Trustwave weighs in.
Trustwave Relaunches Advanced Continual Threat Hunting with Human-Led Methodology
Trustwave launches enhancements that allow for increased human-led threat hunting to uncover more behavior-based findings associated with specific threat actors.
MSSP Trustwave Relaunches Advanced Continual Threat Hunting Platform
Trustwave, a Top 250 MSSP, has relaunched its Advanced Continual Threat Hunting platform to help organizations identify threats that evade many security tools.
What is LockBit Ransomware and How Does it Operate?
Trustwave’s SpiderLabs how the LockBit group “dominates the ransomware space” and uses large payments to recruit experienced actors.
Health Tech Innovation: How to Advance Data Security To Support Healthcare Accessibility
Trustwave’s Kory Daniels shares the security measures that can help decrease an organization's attack surface, create accurate response automation and prevent compromise.
Phishing attack uses Facebook posts to evade email security
Trustwave SpiderLabs researchers highlight a new phishing campaign uses Facebook posts as part of its attack chain to trick users into giving away their account credentials and personally identifiable information (PII).
14 Lessons CISOs Learned in 2022
The coming new year is a good moment for chief information security officers to reflect upon what they've learned this year and how to apply this knowledge going forward – Trustwave’s Kory Daniels chimes in.
Business email compromise attacks going mobile via SMS and social media apps
A report from Trustwave SpiderLabs found the number of BEC attacks that leverage the Short Message Service (SMS) instead of email has been steadily increasing.
IDC MarketScape APAC assessment
The IDC MarketScape: Asia Pacific Professional Security Services Vendor Assessment has named Trustwave as a Major Player.
Lumen CenturyLink Vet to Lead Trustwave Partners Globally
Trustwave partners have a new global leader. Garrett Gee, previously with Lumen Technologies/CenturyLink and previously Level 3, is Trustwave’s new global vice president of indirect channels and alliances.
This Zero-Day Twitter Hack Has Already Impacted 5.5 Million Users: Report
Trustwave’s Ed Williams outlines the impact of common security mistakes related to APIs and guidance for organizations.
IT Jams – Introducing Trustwave
Trustwave’s Craig Searle explains how Trustwave protects its clients from the devastating impact of cyberattacks and its unique penetration testing offering.
Top Tips for the Healthcare Industry to Protect against Cyberattacks
Trustwave’s Ed Williams shares proactive guidelines on how healthcare organisations can bolster their security infrastructure and increase cyber resilience.
Journal of mHealth
Trustwave’s Ed Williams shares proactive guidelines on how healthcare organisations can bolster their security infrastructure and increase cyber resilience.
Shining a Light on the Dark Web
Trustwave’s Ziv Mador explains how Dark Web marketplaces sell a plethora of tools, stolen data, and forged documents, and why some of the things for sale are priced higher than the rest.
New Trustwave solution designed to uncover complex vulnerabilities
Trustwave has announced its new Enterprise Pen Testing (EPT) offering, designed to meet the complex testing needs of large organisations with an extensive breadth and depth of vulnerability identification, ability to deliver scaled programs of work, and competitive pricing.