SpyCloud

Before you close your laptop for the winter break, check out our latest and last SpyCloud Security Roundup Newsletter of 2024! 🗞️ Keep reading for our analysis of: 📍Recent events like the charges against members of Scattered Spider, the recirculation of old #MOVEit data, and the Andrew Tate “The Real World” hack 📍New cybercrime trends like a #phishing campaign that leverages Google Docs and Weebly and a sneaky new – still unidentified – #infostealer targeting macOS devices 📍Implications from the big headlines of the year, like the #MOAB and National Public Data breaches 📍What’s to come in 2025, and how to be thinking about what to prioritize come January #securityresearch #spycloud

Last year saw another influx of large-scale data breaches, one being the #NPDBreach which exposed billions of PII data of US citizens. Layered defenses have been a best practice for some time, but protecting your organization from stolen data requires more visibility than ever into the exposed digital identities of your workforce, consumers and supply chain that could be opening nefarious doors and windows to your networks and systems. 👤 Holistic identity correlation is key to identifying threats before they strike. In his latest contributed article, SpyCloud CPO and Forbes Technology Council member, Damon Fleury breaks down how connecting the dots across compromised identities, suspicious behaviors, and attack patterns gives businesses a proactive and preventative approach to cybersecurity that is vital in the new year and beyond. Read the full article: https://bit.ly/3Pcg00M #Cybersecurity #IdentityCorrelation #DataProtection #BreachPrevention

LummaC2 has been a consistently rising threat in the #malware world, which is no surprise given the amount of updates its developers made to it in 2024 – all of which make it more resilient and powerful as an infostealer. In our latest blog, #SpyCloud Labs analyzes the notable changes we're seeing with Lumma's capabilities, as well as concerning trends with corresponding infection rates. Dig in with us to unpack it all, including: ❗A recent spike in daily LummaC2 infections, which coincided with the diminishing of other popular stealers like RedLine and StealC. ❗Lumma's ability to fully circumvent Google Chrome's App-Bound Encryption, enabling cookie theft using Chrome's CookieMonster library. ❗More resilient data exfiltration using Steam profiles to dynamically serve new C2's in the event the hardcoded C2s are unavailable. ❗The bundling of GhostSocks proxies alongside LummaC2 installs and within the LummaC2 control panel to effectively turn infected hosts into residential proxies. Read the full blog here: https://bit.ly/40f0jwt

Merry and Bright! 💫 Happy Holidays and a joyous and safe New Year from #TeamSpyCloud!

From our team to yours, we wish you all a very safe and secure holiday season and a joyous start to 2025! 🎁 Our offices will be closed for our annual company-wide Winter Break from December 24-January 1. For SpyCloud customers, if you do have an urgent request or question please reach out to your CSM or follow the portal ticketing process.

We are rounding out SpyCloud's 12 Days of Defending with our last, but not least valuable tip for security teams and their organizations to be mindful of far beyond the holiday season in preventing cybercrime. On Day 12 we bring you a way to shed light 🕯️ on the dark web and insights to better understand the exposures of your workforce and consumers that leave your business vulnerable to cyber attacks like #ato, #fraud, #sessionhijacking and #ransomware. 🎁 TIP: Use SpyCloud free tool, Check Your Exposure, to illuminate your organization’s dark web exposure as you prepare for the new year. Get your free report: https://lnkd.in/eeXj8WGW We wish you a safe and secure holiday season and 2025!! 🔒

The year isn't done yet and we're not done adding new, great talent to #TeamSpyCloud! 🎉 Join us in welcoming Dave Custodio and Michael Sautter to SpyCloud -- Dave as one of our newest Technical Account Managers and Michael as our Regional Sales Director in the Southwest Region (US). Connect with both of them on Linkedin today! #GrowwithSpyCloud

Cybercrime continues to grow at an alarming rate and it's more important than ever for organizations, especially those in the #banking and #financial services, to understand the TTPs and motivations of bad actors to better protect their organization from malicious activities and prevent #fraud. SpyCloud's leader of our in-house security research team, #SpyCloud Labs, Trevor Hilligoss joined the Reinventing Banking podcast to breakdown what activities we're seeing in the criminal underground and how acting on what cybercriminals know about your business or consumers can disrupt cybercrime more comprehensively.

Just like trimming a 🎄 comes with a lot of focus on the right ornaments, garland, lights etc, organizations should take just as much care in the applications and tools they leverage across the business for productivity, communications, HR and more -- as they provide valuable access to criminals to enter the business through an open window. Last year, SpyCloud recaptured more than 4.7 million third-party application credentials harvested by #malware on both managed and unmanaged devices. 🎁 TIP: Be selective about the apps and software you install, and download only from trusted sources to avoid malicious applications that could infect you with malware. Learn more about the potential exposure third-party applications can pose in our latest Malware and Ransomware Defense Report: https://lnkd.in/dtKDpGAx

The U.S. government is intensifying efforts to replace telecommunications equipment from Chinese manufacturers due to national security concerns. This initiative, known as "rip and replace," aims to eliminate potential espionage risks associated with foreign-made technology in critical infrastructure. The program has faced challenges, including funding shortfalls, logistical complexities a few gaps in the strategy as SpyCloud's Director of Data & Analytics Product, James Shank points out, “This would be stronger if coupled with policy that requires baseline security considerations for consumer devices, as well as a means to automatically update them." While hopeful, with recent legislative actions that have sought to address these issues to ensure the security of the nation's communications networks, there is still more to come on this front. Read more of this The Washington Post article: https://wapo.st/3ZIcXTa (Behind paywall) #cyberrisk #cybercrime