#cybersecurity #AiteNovarica
We are proud to announce that Group-IB has been named the largest and most experienced Incident Response Retainer (IRR) provider in Aite-Novarica’s recent Impact Report on IRR market players.
Group-IB’s IRR program is based on the company’s track record in responding to cyber incidents for 19 years, involving over 1,300 investigations across 60 countries, and racking up 70,000 hours of hands-on IR experience. According to the Aite-Novarica report, this experience makes Group-IB an outlier seven times over. Group-IB has over 150 active retainer clients, including the top 30 largest banks and financial services firms globally.
Check out the report to learn more👈
We are proud to announce that Group-IB has been named the largest and most experienced Incident Response Retainer (IRR) provider in Aite-Novarica’s recent Impact Report on IRR market players.
Group-IB’s IRR program is based on the company’s track record in responding to cyber incidents for 19 years, involving over 1,300 investigations across 60 countries, and racking up 70,000 hours of hands-on IR experience. According to the Aite-Novarica report, this experience makes Group-IB an outlier seven times over. Group-IB has over 150 active retainer clients, including the top 30 largest banks and financial services firms globally.
Check out the report to learn more👈
🔥5👎1
#webinar
Imagine a huge wave of phishing emails hit your company. How can you be sure that no one opened malicious attachments or links? And what would be the consequences if this happened?
Detonation is the answer. Join our webinar "Having doubts? Detonate! Malware detonation use cases", where we will discuss the preparation of detonation environment, advantages and ways to use detonation in real practice.
Save the date: September 13 at 11 AM (GMT+1) / 2 PM (GMT + 4)
Register 👈
Imagine a huge wave of phishing emails hit your company. How can you be sure that no one opened malicious attachments or links? And what would be the consequences if this happened?
Detonation is the answer. Join our webinar "Having doubts? Detonate! Malware detonation use cases", where we will discuss the preparation of detonation environment, advantages and ways to use detonation in real practice.
Save the date: September 13 at 11 AM (GMT+1) / 2 PM (GMT + 4)
Register 👈
👍2🔥2👎1
#phishing #Steam #CERT
Fraudsters have been creating hundreds of phishing resources mimicking Steam online gaming platform, but most of these websites looked half-baked and users easily spotted a fake.
A new threat emerged out of nowhere, and its name was browser-in-the-browser. Using the browser-in-the-browser phishing technique, hackers create a fake browser window on a phishing resource, which at first glance is indistinguishable from the authentic one. Threat actors decided to take advantage of the fact that Steam uses a pop-up window for user authentication instead of a new tab.
Since browser-in-the-browser technology poses a significant risk to users, Group-IB CERT-GIB specialists decided to analyze it in detail using an example of a phishing kit located on a resource that mimics Steam. Check out our new blog post👈
Fraudsters have been creating hundreds of phishing resources mimicking Steam online gaming platform, but most of these websites looked half-baked and users easily spotted a fake.
A new threat emerged out of nowhere, and its name was browser-in-the-browser. Using the browser-in-the-browser phishing technique, hackers create a fake browser window on a phishing resource, which at first glance is indistinguishable from the authentic one. Threat actors decided to take advantage of the fact that Steam uses a pop-up window for user authentication instead of a new tab.
Since browser-in-the-browser technology poses a significant risk to users, Group-IB CERT-GIB specialists decided to analyze it in detail using an example of a phishing kit located on a resource that mimics Steam. Check out our new blog post👈
🔥4👎1
#cybersecurity #bootcamp
Group-IB took part in Security bootcamp 2022 in Vietnam! For the 10th time the event brought together numerous cyber security experts from across the country. Nam Le, Incident Response and Digital Forensics Analyst, and Anh Le, Business Development Manager, attended the bootcamp and happily provided Group-IB’s expertise. Le Phuong Nam shared a forensic case in his presentation "A money heist".
Thanks for such an amazing event! Sharing the latest knowledge and skills helps cybersecurity community to fight against cyber crime.
Group-IB took part in Security bootcamp 2022 in Vietnam! For the 10th time the event brought together numerous cyber security experts from across the country. Nam Le, Incident Response and Digital Forensics Analyst, and Anh Le, Business Development Manager, attended the bootcamp and happily provided Group-IB’s expertise. Le Phuong Nam shared a forensic case in his presentation "A money heist".
Thanks for such an amazing event! Sharing the latest knowledge and skills helps cybersecurity community to fight against cyber crime.
🔥14❤1👎1
#scam #crypto
💸Crypto giveaway scams continue to soar: Group-IB has noted a fivefold increase in the number of domains used for crypto giveaway scams that involve fake YouTube streams in the first half of 2022. In addition to Vitalik Buterin, Elon Musk, and other crypto celebs, scammers started exploiting the name of Nayib Bukele, the president of Salvador.
Since Group-IB’s first report on the scheme, crypto giveaway scams evolved into an illicit market segment with multiple services that aim to facilitate fraudulent operations. According to Group-IB, 63% of the new fraudulent domain names were registered with Russian registrars, but the fake websites are primarily designed to target English and Spanish-speaking crypto investors in the US and other countries.
In the first six months of 2022, CERT-GIB identified more than 2,000 domains registered explicitly to be used as fake promotion websites.
Want to learn more? Check out our website👈
💸Crypto giveaway scams continue to soar: Group-IB has noted a fivefold increase in the number of domains used for crypto giveaway scams that involve fake YouTube streams in the first half of 2022. In addition to Vitalik Buterin, Elon Musk, and other crypto celebs, scammers started exploiting the name of Nayib Bukele, the president of Salvador.
Since Group-IB’s first report on the scheme, crypto giveaway scams evolved into an illicit market segment with multiple services that aim to facilitate fraudulent operations. According to Group-IB, 63% of the new fraudulent domain names were registered with Russian registrars, but the fake websites are primarily designed to target English and Spanish-speaking crypto investors in the US and other countries.
In the first six months of 2022, CERT-GIB identified more than 2,000 domains registered explicitly to be used as fake promotion websites.
Want to learn more? Check out our website👈
👍6❤2👎1🔥1
#award #FightAgainstCybercrime
We are proud to announce that Group-IB has been recognized by Singapore Police Force (SPF) for its commitment and vigilance in detecting and deterring digital threats facing the country. Group-IB Founder and Chief Executive Officer, Dmitry Volkov was presented with an Appreciation Plaque by the Guest of Honor, Deputy Commissioner of Police (Investigation & Intelligence), Mr. How Kwang Hwee at the 8th Alliance of Public PrivAte Cybercrime sTakeholders (APPACT). Group-IB was presented with a token of appreciation alongside other APPACT’s members, including META, Google, TikTok, UOB, OCBC, and others.
"We are honored to be part of the SPF-led APPACT CCC, whose work strongly resonates with our long-standing mission of fighting cybercrime. And we will continue to collaborate closely with the Alliance members and SPF to raise awareness of cyber threats and ensure a safer digital environment for Singapore", Dmitry Volkov said.
More details👈
We are proud to announce that Group-IB has been recognized by Singapore Police Force (SPF) for its commitment and vigilance in detecting and deterring digital threats facing the country. Group-IB Founder and Chief Executive Officer, Dmitry Volkov was presented with an Appreciation Plaque by the Guest of Honor, Deputy Commissioner of Police (Investigation & Intelligence), Mr. How Kwang Hwee at the 8th Alliance of Public PrivAte Cybercrime sTakeholders (APPACT). Group-IB was presented with a token of appreciation alongside other APPACT’s members, including META, Google, TikTok, UOB, OCBC, and others.
"We are honored to be part of the SPF-led APPACT CCC, whose work strongly resonates with our long-standing mission of fighting cybercrime. And we will continue to collaborate closely with the Alliance members and SPF to raise awareness of cyber threats and ensure a safer digital environment for Singapore", Dmitry Volkov said.
More details👈
🔥16👍1👎1
#Uber #breach
Group-IB researchers have found some interesting information about the recent Uber hack. Check out our post on Medium for more details👈
Group-IB researchers have found some interesting information about the recent Uber hack. Check out our post on Medium for more details👈
Medium
What Group-IB found about the Uber Hack
On September 16, a user, nicknamed vx-underground, posted screenshots to Twitter with evidence of access to Uber internal systems…
👍5👎1🔥1
#AttackSurfaceManagement #ASM
Imagine the following situation. In 2016, a marketing specialist makes an urgent request to the IT department to create a landing page with the domain name “promotionforthisproduct2016[.]com” in order to promote a product. The domain was created and soon thereafter the promotion ended. A year goes by and the IT specialist leaves the company. Two years later, the marketing specialist follows suit. In 2020, the company hires a new Chief Security Officer who is not told anything about the domain or the potentially vulnerable infrastructure that hosts it.
As people say, the Internet remembers everything — and not just the photos of Beyoncé or Barbra Streisand’s house, but any external IT assets that companies create. Assets can also be seen by threat actors, who can use vulnerabilities and weaknesses to carry out attacks.
Group-IB Attack Surface Management maps out the organization’s entire external attack surface, with an eye towards discovering shadow IT and other hidden risks. Check out our latest blog post to learn more about the solution👈
Imagine the following situation. In 2016, a marketing specialist makes an urgent request to the IT department to create a landing page with the domain name “promotionforthisproduct2016[.]com” in order to promote a product. The domain was created and soon thereafter the promotion ended. A year goes by and the IT specialist leaves the company. Two years later, the marketing specialist follows suit. In 2020, the company hires a new Chief Security Officer who is not told anything about the domain or the potentially vulnerable infrastructure that hosts it.
As people say, the Internet remembers everything — and not just the photos of Beyoncé or Barbra Streisand’s house, but any external IT assets that companies create. Assets can also be seen by threat actors, who can use vulnerabilities and weaknesses to carry out attacks.
Group-IB Attack Surface Management maps out the organization’s entire external attack surface, with an eye towards discovering shadow IT and other hidden risks. Check out our latest blog post to learn more about the solution👈
YouTube
Group-IB Attack Surface Management: Discover your external attack surface
Group-IB Attack Surface Management improves security by continuously discovering all external IT assets, assessing risk using threat intelligence data, and prioritizing issues to enable high-impact remediation efforts.
Discover unmanaged assets and other…
Discover unmanaged assets and other…
👍7👎1
#FightAgainstCybercrime #Formula1 #Interpol
As part of the Interpol Major Event Support Team (IMEST), Group-IB Digital Risk Protection team contributed to the safety of the Formula 1 Singapore Airlines Singapore Grand Prix 2022.
Our experts identified more than 100 unauthorized instances of ticket sales on social media and local classified websites. The tickets were distributed through individual accounts and non-official groups. Group-IB experts also detected several rogue and scam websites impersonating Grand Prix Singapore. One of the scam websites on the screenshot attempted to trick users into a fake crypto investment scam.
Group-IB findings were promptly actioned by the INTERPOL-led IMEST.
As part of the Interpol Major Event Support Team (IMEST), Group-IB Digital Risk Protection team contributed to the safety of the Formula 1 Singapore Airlines Singapore Grand Prix 2022.
Our experts identified more than 100 unauthorized instances of ticket sales on social media and local classified websites. The tickets were distributed through individual accounts and non-official groups. Group-IB experts also detected several rogue and scam websites impersonating Grand Prix Singapore. One of the scam websites on the screenshot attempted to trick users into a fake crypto investment scam.
Group-IB findings were promptly actioned by the INTERPOL-led IMEST.
🔥9
#report #banks #AttackSurfaceManagement
🏦Banks and other financial service providers are highly digitized, resulting in digital estates that are large and complex. At the same time, the global finance industry faces a hostile threat landscape. These factors lead to high levels of risk that can be difficult to manage.
To help security professionals gain a better view on industry-wide risk trends, Group-IB has created a series of reports that analyze the digital estates and attack surfaces of samples of financial services providers across 3 global regions: Latin America, Europe, and the Asia-Pacific region.
The reports provide insights on the size of the average digital footprint, risk assessments across 8 distinct issue categories, and data-driven recommendations for strengthening security posture.
Download now👈
🏦Banks and other financial service providers are highly digitized, resulting in digital estates that are large and complex. At the same time, the global finance industry faces a hostile threat landscape. These factors lead to high levels of risk that can be difficult to manage.
To help security professionals gain a better view on industry-wide risk trends, Group-IB has created a series of reports that analyze the digital estates and attack surfaces of samples of financial services providers across 3 global regions: Latin America, Europe, and the Asia-Pacific region.
The reports provide insights on the size of the average digital footprint, risk assessments across 8 distinct issue categories, and data-driven recommendations for strengthening security posture.
Download now👈
👍3
#GITEX #cybersecurity
Group-IB is at GITEX GLOBAL 2022, the Middle East’s largest technology exhibition! Make sure to meet our team at Spire Solutions stand, Hall 2 Stand H2-B1, to learn more about Group-IB’s full stack of threat hunting and intelligence solutions!
Group-IB also took part in the conference track of the event, as Principal Incident Response and Digital Forensics Analyst (MEA) Svetlana Ostrovskaya delivered a hugely insightful presentation detailing how Group-IB’s Compromise Assessment capabilities can help organizations discover the hidden threats in their network.
Group-IB is at GITEX GLOBAL 2022, the Middle East’s largest technology exhibition! Make sure to meet our team at Spire Solutions stand, Hall 2 Stand H2-B1, to learn more about Group-IB’s full stack of threat hunting and intelligence solutions!
Group-IB also took part in the conference track of the event, as Principal Incident Response and Digital Forensics Analyst (MEA) Svetlana Ostrovskaya delivered a hugely insightful presentation detailing how Group-IB’s Compromise Assessment capabilities can help organizations discover the hidden threats in their network.
👍7🔥6