Cisco Talos' latest quarterly report reveals that corporate networks face significant risks from cybercriminals, who remain undetected for an average of 17 to 44 days. The education sector suffers the most, with attackers using social engineering tactics that impersonate IT staff. Ransomware incidents have increased, particularly utilizing remote access tools and password-spraying attacks. Additionally, a new campaign active in Poland and Germany features the TorNet backdoor, leveraging PureCrypter malware for stealth operations, indicating a worrying trend of sophisticated evasion tactics employed by cybercriminals.
Cisco Talos reports that cybercriminals can remain undetected within corporate networks for a staggering 17 to 44 days, particularly targeting the education sector with advanced social engineering tactics.
The rise in ransomware incidents correlates with the use of remote access tools, with notable increases in password-spraying attacks where hackers attempt various passwords to gain unauthorized access.
The newly discovered TorNet backdoor campaign employs sophisticated phishing techniques and utilizes the PureCrypter malware to execute attacks unnoticed, demonstrating an evolution in cybercriminal tactics.
Attackers are employing advanced methods to spoof detection by temporarily disconnecting systems before and after executing their payloads, signaling a strategic approach to evade modern cloud security measures.
Collection
[
|
...
]