<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=885880844953016&amp;ev=PageView&amp;noscript=1">

NEWS AND EVENTS The Latest From Morphisec

Media Coverage

September 21, 2020

Hacking the classroom

Many K-12 schools already were grappling with a lack of dedicated funding and resources to help vet and improve cybersecurity defenses before the surge of online classes in the spring, according to one analysis from the Morphisec cybersecurity firm.

Read More
September 18, 2020

Cybercrime is on the Rise During Remote Learning

Fifty-two percent of K-12 educators in the U.S. say their school has not warned them about the dangers of ransomware as they scale remote learning this year, according to the Education Cybersecurity Threat Index released by Morphisec.

Read More
September 18, 2020

Work-From-Home Cybersecurity In Salt Lake City: Are You Prepared For Long-Term Remote Work?

Thirty-six percent of organizations have dealt with a security incident due to an unsecured remote worker.  

Read More
August 24, 2020

In This Work-From-Home Era, Data Protection Must Replace Network Protection

Covid-19 has accelerated a work-from-home trend that began before the current health crisis and will persist in the years to come.

Read More
July 2, 2020

6 cybersecurity start-ups shaking up the industry

We look at the six cybersecurity start-ups named as Technology Pioneers by the World Economic Forum.

Read More
June 17, 2020

Cyber Security Today – Warning to Claire’s shoppers, Tim Hortons app location data controversy and should turn your lights off ?

Anyone who recently bought clothes, accessories, toys or other things at the online store called Claire’s should be watching for suspicious activity on their credit card statements.

Read More
June 16, 2020

Odds are we'll all soon move to Desktop-as-a-Service

I know how to secure my PCs. I've never fallen victim to a phishing attack; gotten infected by a worm; been maligned by malware. But then I have 30-plus years of experience. You? Probably not.

Read More
June 16, 2020

CoinMiner exploits Apple APSDaemon vulnerability to evade detection

Malware distributors are abusing a DLL hijacking vulnerability in Apple’s Push Notification service Windows executable to install coin miners on users attempting to download copyrighted software.

Read More
June 11, 2020

New Study Highlights Cybersecurity Concerns to Due to Work-from-Home Move Because of Coronavirus

Thanks to the shift to work from home in many organizations due to COVID-19, a number of different cybersecurity challenges are beginning to emerge. That’s according to the Morphisec Work-from-Home Employee Cybersecurity Threat Index.

Read More
June 10, 2020

Increasing Cybersecurity Gaps and Vulnerabilities due to Remote Work During COVID-19

Fifty-six (56) percent of employees are using their personal computers as their company’s go remote in response to COVID-19 according to the Work-from-Home (WFH) Employee Cybersecurity Threat Index released by Morphisec.

Read More
June 9, 2020

Security faux pas: 56% of employees use personal computers to WFH

Using nonwork authorized tech at home places company data at risk, especially since 23% of employees are unsure what security protocols exist on their devices, Morphisec found.

Read More
June 3, 2020

Excel 4.0 Macro Functionality Incorporated Into Ursnif Delivery Campaigns

Security researchers discovered a new Ursnif malware delivery campaign leveraging Excel 4.0 macro functionality.

Read More
May 8, 2020

Two Studies Lend Insight Into Endpoint Security Market

Two recently released studies lend businesses of all sizes new insights into the endpoint security market. These studies should guide enterprise IT decision-makers in navigating the endpoint security market. 

Read More
April 25, 2020

Newly found vulnerability and phishing campaign taint Zoom's popularity

The phishing message pretends to be a zoom conference invitation from employer's HR to discuss the immediate suspension or termination of jobs.

Read More
April 24, 2020

Zoom security issues: Zoombombings continue, include racist language and child abuse

Here's a timeline of every security issue uncovered in the video chat app.

Read More
April 23, 2020

Zoom passes 300M daily users as new security vulnerability discovered

Zoom Video Communications Inc. continues to surge in popularity during the COVID-19 pandemic even as yet another security vulnerability has been revealed.

Read More
April 6, 2020

5 critical issues cybersecurity teams face with COVID-19

How organizations address the new reality during the short-haul may have long term consequences

Read More
March 31, 2020

CybersecurityCares Lists Free Tools During Coronavirus

Nathan Burke, CMO at cybersecurity asset management startup Axonius, wrote a blog post at about 4 a.m. a couple weekends ago, and its title captures the current mood: Things will be weird in cybersecurity for a while.

Read More
March 30, 2020

Infrastructure Report: Hospital Technology Faces Coronavirus Strain

Remote work by support staff makes it harder for IT teams to police computer systems and prevent cyberattacks.

Read More
March 27, 2020

Cybercriminal group mails malicious USB dongles to targeted companies.

Shown as a proof-of-concept in 2014, this is the first known use of the BadUSB exploit in the wild.

Read More
March 18, 2020

Free security resources for work-from-home employees during the COVID-19 crisis

Some security vendors are stepping up to help organizations better protect their networks as employees must suddenly work from home.

Read More
March 2, 2020

Windows 10 ActiveX control hacked to execute TrickBot dropper

Hackers are exploiting a Windows 10 ActiveX control to download a malware downloader called Ostap, which has been used by TRickBot for delivery of malicious macros as part of phishing campaigns.

Read More
March 2, 2020

TrickBot Adds ActiveX Control, Hides Dropper in Images

The TrickBot banking trojan has gotten trickier, with the addition of a Windows 10 ActiveX control to execute malicious macros in boobytrapped documents.

Read More
March 2, 2020

Morphisec is using the Windows 10 transition to help companies boost security

Morphisec is using the Windows 10 transition to help companies boost security

Read More
February 29, 2020

Windows 10 Users Warned As Hackers Target Newly Updated Computers

Like most everyone connected with the cybersecurity industry, I always advise people to apply updates to their operating systems as soon as possible to reduce the time that attackers have to jump through the threat windows opened by unpatched vulnerabilities. 

Read More
February 28, 2020

Hackers Use Windows 10 RDP ActiveX Control to Run TrickBot Dropper

A group of hackers is using the remote desktop ActiveX control in Word documents to automatically execute on Windows 10 a malware downloader called Ostap that was seen recently adopted by TrickBot for delivery.

Read More
February 28, 2020

New Trickbot Delivery Method Focuses on Windows 10

Researchers discover attackers abusing the latest version of the remote desktop ActiveX control class introduced for Windows 10.

Read More
February 27, 2020

The winners of the 2020 SC Awards Honored in the U.S.

All journeys have a beginning, middle and an end, and it’s the job of the ForgeRock Identity Platform to ensure that every authentication journey, from start to finish, remains safe for the client and easy for the user.

Read More
February 5, 2020

Threat actors combining data exposure with ransomware attacks

New Cisco Talos research shows an increase in ransomware attacks that double the pressure on victims by threatening them with the exposure of their sensitive data.

Read More
February 3, 2020

Windows 10 UAC bypass used by Trickbot to deliver payload

The hackers behind Trickbot have added a new Windows 10 UAC bypass to the malware to in order to execute code without the victim knowing.

Read More
February 3, 2020

TrickBot Switches to a New Windows 10 UAC Bypass to Evade Detection

The tricky trojan evolves yet again, remaining one of the most advanced vehicles for delivering malware.

Read More
February 3, 2020

Survey: Endpoint Attacks Up, Confidence in Anti-Malware Tools Down

A recent endpoint security survey of 671 IT pros suggested that most organizations have been attacked and their confidence in the effectiveness of anti-virus protections continues to be low.

Read More
October 11, 2019

BitPaymer Ransomware attack on Apple iTunes Windows

All those who are using Apple iTunes on Windows systems are hereby alerted that their computer systems are vulnerable to zero-day iTunes flaw which allows hackers to bypass the anti-virus protection and encrypt their files with malware.

Read More
October 11, 2019

Ransomware Actors Exploiting iTunes and iCloud Zero Day on Windows

Researchers have discovered a blunder in Bonjour’s coding, which introduces a well-documented flaw.

Read More
October 11, 2019

Apple patches zero-day ransomware flaw in Windows version of iTunes

Apple has patched a zero-day flaw in iTunes app for Windows that allowed hackers to escape detection and install BitPaymer ransomware.

Read More
October 10, 2019

Ransomware gang uses iTunes zero-day

BitPaymer ransomware spotted abusing iTunes for Windows bug to bypass antivirus detection.

Read More
October 10, 2019

Apple iTunes Bug Actively Exploited in BitPaymer/iEncrypt Campaign

Attackers exploit an “unquoted path” flaw in the Bonjour updater in iTunes for Windows to deliver ransomware attacks.

Read More
October 10, 2019

iTunes Zero-Day Vulnerability Exploited by BitPaymer Ransomware

The BitPaymer ransomware operators were observed abusing a zero-day vulnerability in Apple’s iTunes for Windows to run code and evade detection, Morphisec’s security researchers have discovered.

Read More
October 10, 2019

Flaw in iTunes for Windows Abused for Ransomware Attacks

Flaw in iTunes for Windows Abused for Ransomware Attacks

Read More
October 10, 2019

BitPaymer ransomware attackers exploit Apple flaw to bypass detection

Apple has patched a vulnerability in iCloud for Windows and iTunes for Windows that malicious actors had been exploiting to evade antivirus and endpoint detection and response systems as they attempted to infect machines with ransomware.

Read More
October 10, 2019

Apple Warning: ‘Alarming’ iTunes Bug Led To Attacks—Millions Told ‘Update Now’

Just as Mac users wave goodbye to iTunes with macOS Catalina, Windows users are being warned of a horrible bug that has been found in their version of the software and which has enabled malicious attacks on targeted systems.

Read More
October 10, 2019

Apple Software Update Zero-Day Used by BitPaymer Ransomware

Several companies from the automotive industry were targeted by BitPaymer ransomware operators during August, in attacks that used an Apple zero-day vulnerability impacting the Apple Software Update service bundled with iTunes and iCloud for Windows.

Read More
October 10, 2019

iTunes Zero-Day flaw exploited by the gang behind BitPaymer ransomware

The gang behind BitPaymer and ransomware attacks has been found exploiting Windows zero-day for Apple iTunes and iCloud.  

Read More
October 10, 2019

Ransomware Gang Uses iTunes Zero-Day

The operators of the BitPaymer ransomware have been spotted using a zero-day in iTunes for Windows as a mechanism to bypass antivirus detection on infected hosts.

Read More
October 10, 2019

Attackers exploit an iTunes zeroday to install ransomware

Apple patches actively exploited flaw that let ransomware crooks evade AV protection.

Read More
October 10, 2019

iTunes Zero-Day Exploited to Deliver BitPaymer

The ransomware operators targeted an "unquoted path" vulnerability in iTunes for Windows to evade detection and install BitPaymer.

Read More
September 25, 2019

CSU Student Awarded Morphisec Scholarship

Columbus State University student Huirui Washington was selected as the first place scholarship winner with the Morphisec Award.

Read More
August 21, 2019

MORPHISEC ANNOUNCES 2019 WOMEN IN CYBERSECURITY SCHOLARSHIP WINNERS

SCHOLARSHIPS AWARDED TO THREE FEMALE STUDENTS TO ENCOURAGE YOUNG WOMEN POISED TO ENTER THE CYBERSECURITY FIELD GLOBALLY

Read More
August 13, 2019

Building a Culture of Security: 73 articles Summarizing Black Hat USA 2019

If there was a common theme at the 2019 Black Hat USA conference in Las Vegas, it may well have been security culture.

Read More
August 13, 2019

Protonmail phishing, APT41, Machete, BITTER, Sodinokibi, STRONTIUM and IoT, MoqHao, GermanWiper, Bladr, Lokibot, etc.

Last week, hackers and security experts from around the world descended on Las Vegas for a number of security conferences, the most prominent of which were Black Hat and Defcon.

Read More
August 7, 2019

MEET THE 2019 MORPHISEC WOMEN IN CYBERSECURITY SCHOLARSHIP WINNERS

MORPHISEC VP OF PRODUCT MANAGEMENT NETTA SCHMEIDLER ANNOUNCES THE 2019 WINNERS OF THE MORPHISEC WOMEN IN CYBERSECURITY SCHOLARSHIP

Read More
July 24, 2019

FIN8 ACTORS' RECENT ACTIVITY BUOYED BY NEW MALWARE TOOLSET: REPORT

RESEARCHERS DISCOVERED A NEW REVERSE SHELL MALWARE PROGRAM USED BY CYBER-CRIMINAL FIN8 GROUP TO ESTABLISH COMMAND-AND-CONTROL COMMUNICATIONS WITH INFECTED MACHINES

Read More
July 18, 2019

BITPAYMER TARGETS 15 U.S. ORGANIZATIONS IN 3 MONTHS

AN ONGOING CAMPAIGN USING THE BITPAYMER RANSOMWARE HAS TARGETED AT LEAST 15 U.S. ORGANIZATIONS IN THE LAST THREE MONTHS ACROSS THE FINANCIAL, AGRICULTURAL, TECHNOLOGY AND GOVERNMENT SECTORS, RESEARCHERS SAID THURSDAY.

Read More
July 18, 2019

BITPAYMER RANSOMWARE OPERATORS WAGE CUSTOM, TARGETED ATTACKS

A NEW FRAMEWORK IS ALLOWING THE THREAT GROUP TO COMPILE VARIANTS OF THE MALWARE FOR EACH VICTIM, MORPHISEC SAYS.

Read More
July 18, 2019

Axios Codebook

BitPaymer ransomware learns some new tricks

Read More
July 9, 2019

SURVEY: PEOPLE TRUST THEIR SMARTPHONES MORE THAN HOSPITALS WITH THEIR PERSONAL DATA

NEARLY HALF OF CONSUMERS BELIEVE THEIR PERSONAL HEALTH INFORMATION IS MORE SECURE ON THEIR PERSONAL ELECTRONIC DEVICES THAN IT IS ON THEIR HEALTH CARE PROVIDERS’ COMPUTER SYSTEMS.

Read More
June 25, 2019

FINANCIAL FIRMS ATTACKED 300X MORE OFTEN THAN OTHERS

THE MORPHISEC 2019 CONSUMER FINANCIAL CYBERSECURITY THREAT INDEX  SURVEYED 1 000 CONSUMERS TO EXAMINE HOW THE INCREASING NUMBER OF FINANCIAL CYBER ATTACKS IS IMPACTING THEIR MINDSET.

Read More
June 20, 2019

CONSUMERS FEEL THREATENED BY FINANCIAL CYBERATTACKS

PEOPLE ARE JUSTIFIED IN WORRYING ABOUT "HOW MUCH THEIR FINANCIAL SERVICE PROVIDERS ARE INVESTING IN PROTECTING THEIR FINANCIAL DATA AND ACCOUNTS."

Read More
June 12, 2019

FIN8 GROUP RETURNS, TARGETING POS DEVICES WITH MALWARE

AFTER A TWO-YEAR ABSENCE, THE HACKING GROUP KNOWN AS FIN8 HAS RETURNED WITH A NEW CAMPAIGN MAINLY TARGETING POINT-OF-SALE MACHINES IN THE HOTEL INDUSTRY

Read More
June 11, 2019

FIN8 HACKERS RETURN AFTER TWO YEARS WITH ATTACKS AGAINST HOSPITALITY SECTOR

FIN8 RETURNS WITH IMPROVED MALWARE AND NEW ATTACKS AIMED AT POS SYSTEMS IN THE HOTEL INDUSTRY.

Read More
June 11, 2019

NEW VERSION OF SHELLTEA BACKDOOR USED BY FIN8 HACKING GROUP

RESEARCHERS HAVE DETECTED A NEW CAMPAIGN AGAINST THE HOTEL-ENTERTAINMENT INDUSTRY EMPLOYING THE FIRST DOCUMENTED USE OF THE SHELLTEA/PUNCHBUGGY BACKDOOR SINCE 2017. 

Read More
June 11, 2019

FIN8 TRIES TO BREACH U.S. HOTEL WITH NEW MALWARE VARIANT, RESEARCHERS SAY

A CRIMINAL HACKING GROUP TRIED TO BREACH THE COMPUTER NETWORK OF A U.S. HOTEL ACCORDING TO RESEARCH FROM ENDPOINT SECURITY FIRM MORPHISEC.

Read More
June 10, 2019

MUDDYWATER, FIN8 AND PLATINUM THREAT ACTORS BACK IN ACTION

RESEARCHERS HAVE SPOTTED THE MUDDYWATER, FIN8 AND PLATINUM CYBERGANGS ALL MAKING AN UNWANTED COMEBACK FOLLOWING AN OBSERVED INCREASE IN MALICIOUS ACTIVITY OVER THE LAST FEW WEEKS.

Read More
June 7, 2019

AS CYBERSECURITY THREATS CHANGE, SO MUST HOSPITALS

A NEW ASSESSMENT OF CYBERSECURITY THREATS HIGHLIGHTS CONSUMERS’ GROWING ROLE AND PREDICTS THINGS WILL GET WORSE BEFORE THEY GET BETTER.

Read More
May 14, 2019

EVER-CHANGING HWORM RAT FOUND IN NEW VARIANT

SECURITY RESEARCHERS HAVE DISCOVERED A NEW VERSION OF THE INFAMOUS HWORM A.K.A NJRAT. THIS REMOTE ACCESS TOOL (RAT) IS WIDELY KNOWN FOR TARGETING ORGANIZATIONS IN THE MIDDLE EAST.

Read More
April 17, 2019

MORPHISEC’S Q1 2019 U.S. CITIZEN THREAT INDEX

AMERICANS FEAR OF AN IMMINENT OR ELEVATED CYBER THREAT AGAINST THE NATION DROPS TO 51%; BUT 27% OF CITIZENS BELIEVE THERE ARE LINGERING EFFECTS ON CYBER DEFENSES FROM THE GOVERNMENT SHUTDOWN

Read More
April 15, 2019

45% OF CONSUMERS THINK THEY CAN KEEP PHI SAFER THAN PROVIDERS

ALMOST HALF OF CONSUMERS (45 PERCENT) BELIEVE THEIR PROTECTED HEALTH INFORMATION IS MORE SECURELY STORED ON THEIR PERSONAL ELECTRONIC DEVICES THAN THEIR HEALTHCARE PROVIDERS', ACCORDING TO A MORPHISEC SURVEY.

Read More
April 9, 2019

SHOULD CYBER-SECURITY BE MORE CHAMELEON, LESS RHINO?

BILLIONS ARE BEING LOST TO CYBER-CRIME EACH YEAR, AND THE PROBLEM SEEMS TO BE GETTING WORSE. SO COULD WE EVER CREATE UNHACKABLE COMPUTERS BEYOND THE REACH OF CRIMINALS AND SPIES? ISRAELI RESEARCHERS ARE COMING UP WITH SOME INTERESTING SOLUTIONS.

Read More
April 4, 2019

CONSUMERS ON BOARD WITH SECURING HEALTH RECORDS

AS THE HEALTHCARE INDUSTRY CONTINUES TO STRUGGLE WITH TIGHTENING UP ITS CYBER-DEFENSES, CONSUMERS INCREASINGLY BELIEVE THEY PLAY A ROLE IN SECURING THEIR HEALTH INFORMATION, ACCORDING TO A NEW REPORT PUBLISHED BY MORPHISEC.

Read More
April 3, 2019

CONSUMERS ARE NOT PREPARED TO HANDLE CYBERSECURITY THREATS, MORPHISEC REPORT FINDS

THE 2019 MORPHISEC CONSUMER HEALTHCARE: CYBERSECURITY THREAT INDEX FOUND THAT WHILE HEALTHCARE PORTAL USE BY CONSUMERS HAS INCREASED, CONSUMERS BELIEVE THEIR HEALTH DATA IS MORE SECURE ON THEIR OWN PHONE THAN ON PROVIDERS’ DEVICES.

Read More
April 1, 2019

11 QUESTIONS TO ASK BEFORE BUYING AI-ENABLED SECURITY SOFTWARE

INFOSEC IS COMPLICATED ENOUGH. ADD AI/ML INTO YOUR SECURITY SOFTWARE MIX, AND YOU MAY BE ASKING FOR TROUBLE.

Read More
March 18, 2019

QUEL RETOUR SUR INVESTISSEMENT POSSIBLE EN MATIÈRE DE CYBERSÉCURITÉ ?

EN 2017, 4,9 MILLIARDS DE DOLLARS ONT ÉTÉ INVESTIS DANS DES START-UPS EN CYBERSÉCURITÉ.

Read More
March 4, 2019

APT GROUPS USE COBALT STRIKE TO COMPROMISE POINT-OF-SALE SYSTEMS

RESEARCHERS FROM MORPHISEC HAVE DETECTED A SPIKE IN ATTACKS AGAINST POINT-OF-SALE (POS) SYSTEMS SINCE THE BEGINNING OF THE YEAR, MANY OF WHICH USED THE COBALT STRIKE PENETRATION TESTING FRAMEWORK TO DELIVER MEMORY-SCRAPING MALWARE.

Read More
March 1, 2019

RETAIL INDUSTRY ENDURES NEW POINT-OF-SALE CYBERCRIME SPREE

RESEARCHERS FROM MORPHISEC HAVE UNCOVERED AN ONGOING CAMPAIGN AGAINST RETAIL VMWARE HORIZON POINT-OF-SALE (POS) THIN CLIENTS.

Read More
March 1, 2019

POS CLIENTS TARGETED WITH COBALT STRIKE, CARD SCRAPING MALWARE

RECENT ATTACKS AGAINST POINT-OF-SALE (POS) THIN CLIENTS AROUND THE WORLD HAVE BEEN USING CARD DATA SCRAPING MALWARE AND THE COBALT STRIKE BEACON, SECURITY FIRM MORPHISEC REVEALS.

Read More
February 27, 2019

FIN6 USING FRAMEWORKPOS SCRAPING MALWARE IN POS ATTACKS

The security firm Morphisec has connected the threat group Fin6 to a string of point-of-sale attacks against VMWare Horizon thin clients. 

Read More
February 26, 2019

TEST: THE 4 CYBERSECURITY KPIS ENTERPRISES NEED TO STAY SECURE THIS YEAR

CISOs can best evaluate and measure the prevention efficacy of their cyber defenses with the T.E.S.T. performance indicators: Time, Efficacy, Simplicity and Total Cost of Ownership.

Read More
February 16, 2019

MORPHISEC, UNE SOLUTION INNOVANTE DE PRÉVENTION DES END POINTS

Nouveau venu dans l’hexagone, avec un bureau ouvert en octobre 2018, l’éditeur a vu le jour en 2014, avec une commercialisation effective de sa solution en 2016.

Read More
February 11, 2019

ORCUS RAT EMPLOYS ADVANCED EVASIVE TECHNIQUES

A new, sophisticated campaign that delivers the Orcus Remote Access Trojan (RAT) is claiming victims in ongoing and targeted attacks.

Read More
February 5, 2019

ORCUS RAT HIDDEN IN COCA-COLA VIDEO

Cybersecurity vendor Morphisec has released the details of a malware campaign distributing the Orcus Remote Access Trojan (RAT).

Read More
January 16, 2019

Morphisec nomme Mr. Stéphane HAURAY Directeur France

Morphisec, éditeur de solutions de cyber sécurité qui offrent une protection en temps réel contre les cyber attaques les plus avancées, reconnu par Gartner, PWC, DHS...

Read More
December 18, 2018

Key Findings: Morphisec Labs Threat Report December 2018

Today, endpoint security and threat prevention solution provider Morphisec released their Morphisec Labs Threat Report for December 2018.

Read More
December 11, 2018

What is a keylogger? How attackers can monitor everything you type

Keystroke logging software is one of the oldest forms of malware, dating back to typewriters. It's still popular and often used as part of larger cyber attacks.

Read More
December 4, 2018

Pied Piper campaign targets food chains, suppliers

Researchers from Morphisec, a moving target defence company, have uncovered a widespread, ongoing cyber campaign hitting multiple targets.

Read More
November 30, 2018

Pied Piper phishing scheme infests victims with FlawedAmmyy, RMS RATs

The cybercriminal threat group TA505 is a key suspect in an ongoing phishing campaign that’s been attempting to infect victims with the FlawedAmmyy and Remote Manipulator (RMS) remote access trojans.

Read More
November 26, 2018

Consumers willing to be fleeced for the right Cyber Monday deal

Another area often overlooked during the Black Friday/Cyber Monday period is the danger it presents to non-retail companies.

Read More
November 6, 2018

Survey: Americans Most Wary of Social Media Election Impact

Cybersecurity firm Morphisec said that 63 percent of 1,000 Americans that it surveyed in

Read More
October 10, 2018

U.S. Department of Homeland Security Commissions Israeli Cybersecurity Company Morphisec

Morphisec to develop and test an enhanced moving target defense for virtual systems as part of the DHS’ Silicon Valley Innovation Program

Read More
October 10, 2018

ISRAELI CYBERSECURITY START-UP AWARDED U.S. HOMELAND SECURITY PROJECT

Morphisec will become the first international business to receive a grant from the S&T’s Financial Services Cyber Security Active Defense Technologies category.

Read More
October 4, 2018

DHS Moves to Defend Infrastructure Across Sectors

With the kickoff of National Cybersecurity Awareness Month, the Department of Homeland Security (DHS) has been actively focused on cybersecurity this week.

Read More
October 3, 2018

Morning Cybersecurity: A daily briefing on politics and cybersecurity

Israel-based Morphisec won a DHS grant to develop technology to protect financial institutions from cyberattacks.

Read More
August 20, 2018

Essar Group Chooses Endpoint Threat Prevention From Israel's Morphisec

Essar Group has signed up Morphisec to to secure the organization from advanced attacks.

Read More
August 2, 2018

Ransomware Attacks: A Quantum Leap from Quantity to Quality

While ransomware attack volume may have declined, attacks have evolved to be more sophisticated, targeted and effective against unsuspecting users and unprepared organizations.

Read More
July 11, 2018

Security and new technology: How one company faced the unknown

A move to a pure cloud strategy at the London Stock Exchange Group forced a new security mindset. Here's how the LSEG's CISO faced the challenge.

Read More
July 11, 2018

Cybersecurity: It's about time

The sprawling and complex set of subjects we call cyber security can all be tied to one fundamental concept -- time.

Read More
July 9, 2018

The 10 Top Cybersecurity Startups Of 2018 (So Far)

CRN has identified 10 security startups launched in the past half-decade that stood out from the crowd this year thanks to new funding, the launch of a channel program, or key product enhancements or updates.

Read More
July 6, 2018

IT trends for the remainder of 2018

With the first half of the year come and gone, it's time to start executing plans for the second half.

Read More
June 27, 2018

Female Students Awarded Cybersecurity Scholarships

Three women chosen from a large pool of highly qualified candidates are the new recipients of Morphisec's Women in Cybersecurity Scholarship.

Read More
June 22, 2018

Banking Trojans and cryptojacking on the rise

A new report analyzes threat data collected from approximately 750,000 Morphisec protected endpoints globally, between January 1 and March 31, 2018, as well as from in-depth investigations conducted by the Morphisec Labs threat research team.

Read More
June 20, 2018

Identify gaps in cybersecurity processes to reduce organizational risk

Organizational risk is a given at modern companies. But as threats persist, identifying preventable cybersecurity gaps presents an opportunity to strengthen enterprise defenses.

Read More
June 20, 2018

Fileless, zero-footprint cyber attacks on the rise

One hundred percent of attacks prevented By Morphisec in Q1 used at least one fileless technique. These attacks include adware, says the company, which specialises in moving target defence technology.

Read More
June 20, 2018

Key Findings from the Morphisec Labs’ Threat Report for Q1 of 2018

Endpoint security solution provider Morphisec today released the inaugural edition of the Morphisec Labs’ Threat Report for Q1 of 2018.

Read More
April 17, 2018

INSIDE THE UNNERVING SUPPLY CHAIN ATTACK THAT CORRUPTED CCLEANER

CCleaner owner Avast is sharing more details on the malware attackers used to infect legitimate software updates with malware.

Read More
April 10, 2018

Exploit kits once again ride Flash Player flaws to attack Windows

Adobe’s Flash Player might be on the way out and exploit kits have taken a backseat to cryptominers, but cybercriminals are still finding ways to harness the potent pairing.

Read More
April 9, 2018

Artificial intelligence has a lot to learn about malware protection

Traditional signature-based detection, i.e., antivirus, has proven wholly ineffective in today’s threat landscape where thousands of new variants are created daily, each with a new signature.

Read More
April 4, 2018

THE BILLION-DOLLAR HACKING GROUP BEHIND A STRING OF BIG BREACHES

Saks Fifth Avenue, Saks Off 5th, and Lord & Taylor department stores—all owned by The Hudson’s Bay Company—acknowledged a data breach impacting more than five million credit and debit card numbers. The culprits? The same group that's spent the last few years pulling off data heists from Omni Hotels & Resorts, Trump Hotels, Jason’s Deli, Whole Foods, Chipotle: A mysterious group known as Fin7.

Read More
April 4, 2018

Watering hole computer attack strategies resurface

A hacking technique - watering hole attacks - has resurfaced for the first time since 2015/16. Morphisec's CTO and malware prevention expert, Michael Gorelik, says it's back and more sophisticated than before, and will be the big thing in 2018.

Read More
March 26, 2018

Watering Hole Attack Exploits North Korea's Flash Flaw

An attack leveraging the compromised website of a Hong Kong telecommunications company is using a recently patched Flash vulnerability that has been exploited by North Korea since mid-November 2017, Morphisec warns.

Read More
March 8, 2018

CIGslip Lets Attackers Bypass Microsoft Code Integrity Guard

A new attack method lets attackers bypass Microsoft's Code Integrity Guard (CIG) and inject malicious code into protected processes, including Microsoft Edge. Researchers at Morphisec this week disclosed the details of the technique and proof-of-concept code.

Read More
March 7, 2018

CIGslip Attack Bypasses Windows Code Integrity Guard (CIG)

Malware authors can exploit a flaw in the Windows Code Integrity Guard (CIG) security mechanism to inject malicious, unsigned code into CIG-protected applications, considered to be immune to such attacks.

Read More
March 5, 2018

Six Recently Funded Israeli Startups You Need To Know

Every month, Start-Up Nation Central’s channel on Forbes will highlight a handful of startups that have recently raised funding, and that we think are important to keep an eye on.

Read More
February 28, 2018

Recent Flash Zero-Day Flaw Now Exploited in Widespread Attacks

A vulnerability that was recently patched in Flash Player after being used in targeted attacks is now seeing widespread exploitation in a malicious spam campaign.

Read More
February 27, 2018

Massive Malspam Campaign Targets Unpatched Systems

According to cybersecurity firm Morphisec, cybercriminals are blasting spam messages that urge recipients to click a link to download a Word document. And when a victim opens the document and enables editing, malware attempts to exploit an Adobe Flash Player bug (CVE-2018-4878) patched by Adobe earlier this month.

Read More
February 26, 2018

North Korea’s Flash Player Flaw Now Exploited by Cybercriminals

Endpoint security firm Morphisec has spotted a massive campaign that exploits a recently patched Adobe Flash Player vulnerability to deliver malware.

Read More
February 21, 2018

Term Sheet — Wednesday, February 21

Morphisec, an Israel-based developer of cybersecurity software, raised $12 million in Series B funding. Investors include Orange Digital Ventures, Jerusalem Venture Partners, GE, and Deutsche Telekom.

Read More
February 20, 2018

Orange Digital Ventures investit dans Morphisec, leader de la technologie Moving Target Defense ainsi que dans NGD Systems, pionnier du processing in-situ

Orange Digital Ventures annonce sa participation au financement de Morphisec, leader de la technologie Moving Target Defense.

Read More
February 13, 2018

Endpoint security suites must have these features

The movement toward next-generation endpoint security has accelerated because cybersecurity professionals aren’t happy with the efficacy of existing antivirus tools. This has led to a wave of investment and innovation from vendors including Morphisec.

Read More
February 5, 2018

‘7 Minutes’ with Morphisec Senior Director of U.S Channels Paul Laracy

Cybersecurity provider Morphisec continues to grow its partner community and has a technological advantage over its main competitors, including Cylance, CrowdStrike and Carbon Black.

Read More
February 2, 2018

Israeli Hotel Protects Its VDI From Zero-Days, Evasive Exploits, Browser-Based Attacks and Backdoor Attacks

Israel's top luxury hotel brand protects itself from advanced threats so it doesn't become another entry in the long list of hotel breaches.

Read More
December 15, 2017

Top 6 NGAV Vendors to Watch in 2018

Morphisec makes the list of Solutions Review's top next generation endpoint security vendors to watch.

Read More
December 5, 2017

Supply Chain Attacks on Retail – What Happens When Trusted Channels Can’t be Trusted?

Aging IT infrastructure and unpatched software vulnerabilities coupled with vast amounts of personal data make retailers make a prime cybercrime target.

Read More
November 21, 2017

Israël est toujours à la pointe en matière de cybersécurité

Report in French by TF1/LCI about cybersecurity in Israel, including sound bytes by Morphisec CEO Ronen Yehoshua touring our offices located at the cybercity Beer Sheva.

Read More
November 9, 2017

Women Decide Against Cybersecurity Career Aged 16

Young women in Europe, the US and Israel have decided before they are even 16 years old that they don’t want a career in cybersecurity. Netta Schmeidler shares her view.

Read More
October 19, 2017

Hospitality: Shelter Your Business from Advanced Cyber Threats

Digitalization in the hospitality industry has brought enormous gains in efficiency but also enormous increases in cyber risk.

Read More
September 25, 2017

Is CCleaner the Tip of an Iceberg of Supply Chain Hacks?

In this podcast, Paul Roberts speaks with VP R&D Michael Gorelik CCleaner hack – a hack that Morphisec discovered.

Read More
September 21, 2017

Researchers Link CCleaner Hack to Cyberespionage Group

Gorelik is convinced that supply-chain attacks will increase in frequency but believes that there are already other products out there with malicious code added to them...

Read More
September 19, 2017

A clearer picture of the CCleaner backdoor incident

Michael Gorelik, VP R&D at Morphisec, explained that [...] the TLS initialization of callback functions was probably altered by a modification of the visual studio runtime file.

Read More
September 19, 2017

CCleaner Server Was Compromised in Early July

On Sept. 12, Morphisec warned Avast of the infection, and the latter was able to resolve the issue within 72 hours.

Read More
September 19, 2017

Hackers hid malware in CCleaner, a free app meant to clean out computers

The compromised version of CCleaner [...] was undetected for four weeks, "underscoring the sophistication of the attack," Morphisec VP R&D Michael Gorelik wrote in a blog post.

Read More
September 18, 2017

Update to the CCleaner 5.33.6162 Security Incident

We thank Morphisec and we owe a special debt to their clever people who identified the threat and allowed us to go about the business of mitigating it.

Read More
July 6, 2017

Career path in cybersecurity still steep for women

Women make up just 11% of the world’s information security workforce, according to the 2017 Global Information Security Workforce Study. This is way behind other industries.

Read More
June 20, 2017

Hackers Target U.S. Restaurants Using Clever Phishing Emails

Morphisec Lab attributes the malware to FIN7, a group associated with other damaging attacks on large restaurant chains and hospitality organizations.

Read More
June 9, 2017

FIN7 Chomps Into Restaurants with Undetectable, Fileless Attack

Morphisec Lab identified a new, highly sophisticated fileless attack targeting restaurants across the US.

Read More
March 31, 2017

IoT attack trends -- and how to mitigate them

Two years ago, IoT attacks were considered exotic, an aberration of interest mainly to those in the industry and conspiracy theorists. No longer.

Read More
March 17, 2017

String of fileless malware attacks possibly tied to single hacker group

Report about Morphisec security researchers discovering a new fileless attack framework.

Read More
March 16, 2017

Fileless Malware Campaigns Tied to Same Attacker

Researchers at Israeli security company Morphisec said today that they discovered a new fileless malware attack framework.

Read More
February 14, 2017

Morphisec: Rethinking Endpoint Security

Rob Enderle sees Morphisec as "a universal immunization remedy" for endpoints.

Read More
February 14, 2017

Next-gen security tools won’t keep our industries safe

Rob Enderle sees Morphisec as "a universal immunization remedy" for endpoints.

Read More
New call-to-action

SANS Institute's Latest Product Review of Morphisec

SANS Instructor Matt Bromiley reviews Morphisec's moving target defense technology, which is designed to defeat threats such as zero-days, evasive malware, fileless attacks and exploits by morphing process memory.

Watch the Webcast

SANS Product Review-18