Morphisec, the world's leading provider of prevention-first cybersecurity software, today announced its recognition as a Sample Vendor in the Gartner Hype Cycle for Endpoint Security, 2023.
"It has undergone major overhauls: from being rewritten entirely in Python, which resulted in lower detection rates by traditional defense systems, to a comprehensive redesign and an enhanced communication protocol," Morphisec said in a new detailed technical write-up shared with The Hacker News.
Morphisec this morning published a description of a new variant of the Chae$ malware, "Chae$ 4," which is being used against the financial services and software supply chain sectors.
The Chaes malware has returned as a new, more advanced variant that includes a custom implementation of the Google DevTools protocol for direct access to the victim's browser functions, allowing it to steal data using WebSockets.
Worried about generative AI? CISA Director Jennifer Easterly is. Back in April, she called cybersecurity risk from generative AI “… the biggest issue that we’re going to deal with this century.”
Ransomware has become prolific, with a new ransomware attack striking on average every 10 seconds. That figure may shrink to just two seconds by 2031. Today’s threat actors are powerful and sophisticated enough to successfully hold national governments ransom. But this doesn’t mean that state-level entities are their primary targets.
The novel attack chain, detected by Fortinet FortiGuard Labs on July 13, 2023, is initiated via a phishing email containing a booby-trapped PDF file. It has also been used to introduce Remcos RAT by means of a crypter called SYK Crypter, which was first documented by Morphisec in May 2022.
Microsoft operating systems usage statistics show that the total market share of legacy operating systems exceeds 10%. For cybercriminals, this spells opportunity. For businesses with endpoints and servers powered by an out-of-support OS (Operating System), their best line of defense is automated moving target defense.
Morphisec developed automated moving target defense - or AMTD - technology, which is a risk-reduction strategy and preventive measure that reduces adversary success rates. It is based on the moving target defense developed by the U.S. Department of Homeland Security.
Michael Gorelik developed the Automated-Moving-Target-Defense technology (AMTD) which has recently become increasingly popular as a significant risk-reduction strategy and preventive measure that reduces adversary success rates. Michael kicks this episode off with a bit on his background and Morphisec.