All Posts

Show
33,000 Accounting Inbox Credentials Exposed Online: BEC Made Easy
October 9, 2018 read more

ShadowTalk Update – 10.22.2018

October 22, 2018

In this week’s ShadowTalk, following on from last week’s conversation on how managed service providers can increase your attack surface, …

read more

Cyber Security Awareness Month: Week 3 – Recognize Cyber Scams

October 19, 2018

This week we move onto theme three of Cyber Security Month: recognize cyber scams. The important point here is that …

read more

12.5 Million Email Archives Exposed: Lowering the Barriers for BEC

October 18, 2018

Digital Shadows’ latest research report, Pst! Cybercriminals on the Outlook for Your Emails, highlights the different ways cybercriminals can access corporate …

read more

Cyber Security Awareness Month: Week 3 – It’s Everyone’s Job to Ensure Online Safety at Work

October 17, 2018

This week, National Cyber Security Awareness Month (NCSAM) focuses on accountability and responsibility within the information security space: “It’s Everyone’s …

read more

ShadowTalk Update – 10.15.2018

October 15, 2018

In ShadowTalk this week, Digital Shadows’ CISO Rick Holland, Richard Gold and Simon Hall join Rafael Amado to discuss the Hidden …

read more

Cyber Security Awareness Month: Week 2 – Aiming for Apprenticeships

October 11, 2018

This week’s theme for National Cyber Security Awareness Month (NCSAM) is based around encouraging ‘students and others to seek highly …

read more

Phishing Site Impersonates Financial Services Institution

October 10, 2018

If the infamous bank robber, Willie Sutton, were alive today and honed his cyber skills, he might turn his attention …

read more

ShadowTalk Update – 10.08.2018

October 8, 2018

In this week’s Shadow Talk, Rafael Amado joins Michael Marriott to discuss Digital Shadows’ latest research on Business Email Compromise, Pst! …

read more

Business Email Compromise: When You Don’t Need to Phish

October 4, 2018

According to the FBI, Business Email Compromise (BEC) and Email Account Compromise (EAC) have caused $12 billion in losses since …

read more

Cyber Security Awareness Month: Week 1 – Credential Hygiene

October 3, 2018

It’s the opening week of the annual National Cyber Security Awareness Month (U.S.) and Cyber Security Month (Europe). While good …

read more

Security Analyst Spotlight Series: Christian Rencken

October 2, 2018

Organizations rely on our cyber intelligence analysts to be an extension of their security team. Our global team of analysts provide relevant …

read more

ShadowTalk Update – 10.01.2018

October 1, 2018

Rick Holland, CISO of Digital Shadows, joins Richard Gold and Michael Marriott to discuss the possible implications of Facebook security …

read more

Cybercriminal Marketplaces: Olympus Has Fallen

September 28, 2018

The Olympus cybercriminal marketplace has been caught up in another PR disaster, with the owners reportedly conducting an exit scam …

read more

Thedarkoverlord Out to KickAss and Cash Out Their Data

September 27, 2018

A user claiming to be the notorious darkoverlord extortionist threat actor has appeared on a dark web cybercriminal forum offering …

read more

10 Things You Didn’t Know You Could Do with Shadow Search™

September 25, 2018

You may have seen that we’ve recently released Shadow Search, a new tool that gives you immediate access to both …

read more

ShadowTalk Update – 09.24.2018

September 24, 2018

In ShadowTalk this week, Richard Gold, Simon Hall and Rafael Amado focus on the trade-offs between security and usability, as …

read more

The 2017 FSB indictment and Mitre ATT&CK™

September 20, 2018

On  February 28th, 2017 the US Department of Justice indicted a notorious hacker, Alexsey Belan, and his FSB (Russia’s internal …

read more

Non-traditional State Actors: New Kids on the Block

September 18, 2018

Cyber threat reporting sits at a dichotomy. On the one hand, much furor is made of the role of non-state …

read more

ShadowTalk Update – 09.17.2018

September 17, 2018

In this week’s ShadowTalk, Richard Gold and Simon Hall join Michael Marriott to discuss the latest spate of attacks by …

read more

Airline Discovers Trove of Frequent Flyer Accounts Compromised and Posted for Sale Online

September 14, 2018

Reward program fraud has been rising in recent years across the aviation industry as well as the entire transportation sector. …

read more

MITRE ATT&CK™ and the North Korean Regime-Backed Programmer

September 13, 2018

On 6th September the US Department of Justice (DOJ) unsealed an indictment against a North Korean regime-backed programmer who is …

read more

GAO’s Equifax Post-mortem Report

September 11, 2018

It’s common for the exciting and novel issues that confront security professionals on a daily basis to be hyped up. …

read more

ShadowTalk Update – 09.10.2018

September 10, 2018

In this week’s ShadowTalk, Richard Gold and Rafael Amado join Michael Marriott to discuss the latest Department of Justice complaint …

read more

Sextortion – When Persistent Phishing Pays Off

September 6, 2018

You may have heard of a recent surge in sextortion-based phishing campaigns. These campaigns seek to extort victims by threatening …

read more

Online Risks to Fortnite Users

September 4, 2018

With an enticing array of viral dance moves, tough weekly challenges and fresh skins, people are going bananas for Fortnite. …

read more

ShadowTalk Update – 09.03.2018

September 3, 2018

Not a week goes by without an example where credential stealing, credential reuse, or poor password practices contributed heavily to …

read more

Security Analyst Spotlight Series: Heather Farnsworth

August 30, 2018

Organizations rely on Digital Shadows to be an extension of their security team. Our global team of analysts provide relevant …

read more

Understanding Threat Modelling

August 29, 2018

What is a threat model? Threat modelling, as defined by OWASP, “works to identify, communicate, and understand threats and mitigations …

read more

ShadowTalk Update – 08.27.2018

August 27, 2018

With November’s U.S. midterm elections fast-approaching, we dive into the latest threats and discuss how organizations can understand the threat …

read more

Online Cybercrime Courses: Back to School Season

August 23, 2018

It’s that time of year again. Summer is drawing to a close and retailers are making the most of the …

read more

Mitre ATT&CK™ and the FIN7 Indictment: Lessons for Organizations

August 22, 2018

On August 1, 2018, the US Department of Justice unsealed an indictment against three members of the international cybercrime group …

read more

ShadowTalk Update – 08.20.2018

August 20, 2018

In this week’s ShadowTalk, we dig into ATM fraud. Digital Shadows’ Strategic Intelligence manager Rose Bernard joins Rafael Amado to …

read more

Five Threats to Financial Services: Part Five, Hacktivism

August 15, 2018

OK, so it’s not a sexy as insider threats, banking trojans, phishing campaigns or payment card fraud, but hacktivism is …

read more

Five Threats to Financial Services: Part Four, Payment Card Fraud

August 14, 2018

Payment card information is the lifeblood of the cybercriminal ecosystem. In previous blogs in this series, we’ve focused on how …

read more

ShadowTalk Update – 08.13.2018

August 13, 2018

In this week’s ShadowTalk it’s all things phishing. Rose Bernard and Simon Hall join Rafael Amado to discuss the recent …

read more

Digital Shadows Contributes to Insider Threat Research

August 9, 2018

On July 30, Forrester published its latest research report on malicious insiders, Defend Your Data As Insiders Monetize Their Access. …

read more

Five Threats to Financial Services: Phishing Campaigns

August 8, 2018

In our last blog, we highlighted how banking trojans are a threat to banking customers and small businesses, normally delivered …

read more

ShadowTalk Update – 08.06.2018

August 6, 2018

In this week’s episode, JP Perez-Etchegoyen, CTO of Onapsis, joins Michael Marriott to talk about the exposure of SAP and …

read more

FIN7: Arrests and Developments

August 2, 2018

Three alleged members of FIN7 arrested On August 1st, 2018, the US Department of Justice filed criminal charges against three …

read more

Diversity of Thoughts in the Workplace: Are You Thinking What I’m Thinking?

August 1, 2018

In my most recent blog post I discussed Digital Shadows’ Women’s Network and how it is helping us shape wider …

read more

Security Spotlight Series: Dr. Richard Gold

July 31, 2018

Organizations rely on Digital Shadows to be an extension of their security team. Our global team provide the latest tooling, …

read more

ShadowTalk Update – 07.30.2018

July 30, 2018

Richard Gold and Rose Bernard join Michael Marriott to talked about updates to the Satori botnet, which has expanded to …

read more

Black Hat USA 2018

July 26, 2018

Black Hat USA 2018 is quickly approaching! The conference, one of the world’s leading Information Security events, focuses on the …

read more

Cyber Threats to ERP Applications: Threat Landscape

July 24, 2018

What are ERP Applications? Organizations rely on Enterprise Resource Planning (ERP) applications to support business processes. This includes payroll, treasury, …

read more

ShadowTalk Update – 07.23.2018

July 23, 2018

In this week’s ShadowTalk, we discuss the Robert Mueller indictment against 12 Russian individuals for alleged US election interference. However, …

read more

Five Threats to Financial Services: Banking Trojans

July 19, 2018

A couple of weeks ago, we learned about a new phishing campaign that delivered Trickbot in an attempt to harvest …

read more

Mitre ATT&CK™ and the Mueller GRU Indictment: Lessons for Organizations

July 17, 2018

A recent indictment revealed how the GRU (Russia’s Military Intelligence agency) used both influence operations and network intrusions to achieve …

read more

Digital Risk Protection: Avoid Blind Spots with a More Complete Risk Picture

July 17, 2018

“Digital Shadows leads the pack for digital risk protection providers.” Digital Shadows’ customers have been telling us this for years, …

read more

ShadowTalk Update – 07.16.2018

July 16, 2018

In this week’s ShadowTalk, Digital Shadows’ Russian-speaking security specialist discovered files and source code allegedly related to the Carbanak organized …

read more

Alleged Carbanak Files and Source Code Leaked: Digital Shadows’ Initial Findings

July 11, 2018

Digital Shadows’ Russian-speaking security team discovered a post from 6 July 2018 on exploit[.]in that provided files and source code …

read more
Start Free 7-Day Test Drive of SearchLight
Start Test Drive