Insider Threats Part 1 – Who Is Attacking Your Network? by Tom Cross
In a recent survey conducted by Lancope, the insider threat was a major concern for respondents, with 40 percent citing it as a top risk to their organization. But what do people really mean when they say 'insider threat'? Who are the insiders attacking your network? READ MORE

Webinar Follow-up: “Reverse Engineering Malware: A Look Inside Operation Tovar”

Last Thursday we hosted a webinar entitled “Reverse Engineering Malware: A Look Inside Operation Tovar.” The recording and slides have been posted to our web site, and here is the Q&A from the webinar. READ MORE

Thwarting Zeus Gameover’s Extra Life with SLIC

A new variant of the Zeus Gameover malware has been discovered, which we are calling "Extra Life." Earlier this morning, we began to include the domains from Extra Life’s DGA in our StealthWatch Labs Intelligence Center (SLIC) Threat Feed. READ MORE

Zeus Gameover, the Department of Justice, and the SLIC Threat Feed

Earlier this month, the U.S. Department of Justice announced actions taken to disrupt both the Zeus Gameover botnet and CryptoLocker ransomware infrastructure. This has provided a short window during which organizations can seek out these attacks within their environments and get rid of them. Lancope's SLIC Threat Feed has provided coverage for CryptoLocker since earlier this year, and coverage for Zeus Gameover has just been added as well. READ MORE

Hunting PUTTER PANDA with Lancope

Security researchers are tracking cyber espionage attacks thought to be stemming from a unit of the Chinese PLA, operating under the codename PUTTER PANDA. As with other prominent attacks, organizations can leverage Lancope’s StealthWatch System to search their networks for IOCs from the PUTTER PANDA attacks to determine if they were a victim. READ MORE