October 9, 2018 The Magecart Seal of Approval: Card-Skimming Group Executes Scaled Supply Chain Attack on Shopper Approved Over the past several months, we’ve published four reports on the digital credit card-skimming activities of Magecart—mainly regarding significant breaches like Ticketmaster, British Airways, and Newegg. In every publication, we noted that the six groups under Magecart have ramped up their operations, becoming more clever, and in many cases, sophisticated, with each attack. However, a […]
October 2, 2018 Cyber Threat Landscape: How it’s Evolving & How to Respond Like many of the conflicts that we see in the world today, the number of cyber threats has grown exponentially in size and scope, from within the confines of the firewall to traversing the whole internet. Despite this sprawl, CISOs still spend significant money securing their perimeter, employing an average of 35 tools to do […]
September 19, 2018 Another Victim of the Magecart Assault Emerges: Newegg RiskIQ conducted the research for this report in collaboration with Volexity, which will release a separate report of its own. From different perspectives, we will discuss the same incident, showing how we found and analyzed the latest instance of Magecart using our unique capabilities and datasets. While the dust is settling on the British Airways […]
September 18, 2018 Q2 2018 Mobile Threat Landscape Report: Blacklisted Apps on the Rise as Scams Get Mobile The mobile threat landscape is big, complex, and always changing. The number of mobile apps, both legitimate and malicious, and the stores that host them fluctuate from quarter to quarter—as do the tactics used by attackers to target brands and end-users. For the second year in a row, there was a sharp increase in blacklisted […]
September 13, 2018 Bacloud: Russia’s New Misinformation Safe Haven It was revealed last week that Microsoft took action to stop a phishing operation by Fancy Bear (aka APT28), a cyberespionage group associated with Russian intelligence. The company’s Digital Crimes Unit executed a court order to take control of and sinkhole six domains created by the hacking group ostensibly in preparation for launching phishing attacks […]
August 27, 2018 The RiskIQ Internship Program Series: Henrik Over the ten-week RiskIQ internship program, I have been interning in the product management department at RiskIQ. The program combines practical experience from RiskIQ, a successful startup company and leader in its space, with lessons in innovation and entrepreneurship at UC Berkeley. RiskIQ supports this program to inspire young professionals and give them the confidence […]
August 23, 2018 MarkOfTheWeb: How a Forgetful Russian Agent Left a Trail of Breadcrumbs MarkOfTheWeb: A Calling Card for Careless Russian Agents Digital interference from the Russian Federation is nothing new. Their virtual trespassing efforts have been outed and heavily discussed in the news—even more so in recent months (as you’ve probably noticed). Russian digital incursion into the United States political climate allows them to adjust the direction of […]
August 21, 2018 What’s in an Evil Internet Minute? Even More Evil than Before In today’s threat landscape, falling victim to attacks only takes a minute. With businesses expanding their online presence to create more touchpoints with customers, employees, and partners, the boundaries between what’s inside the firewall and what’s outside become less and less discernible, opening a whole new front in the battle between attackers and security teams. […]
August 14, 2018 Are you Addressing Domain Infringement Attacks Against Your Organization Before they Strike? Unfortunately, all too often organizations are flooded with alerts regarding possible look-a-like domains, but can’t identify which are the most important or take action against dangerous instances of domain infringement until after an employee or customer notifies them that they’ve been victimized. By then the brand, reputational, and material damage has been done, and without […]
