Connect with us

Technology

Surge in “Hunter-killer” Malware Uncovered by Picus Security

Published

on

The Picus Red Report 2024 reveals 333% increase in malware that targets and disables security controls 

SAN FRANCISCO, Feb. 13, 2024 /PRNewswire/ — Picus Security, the Security Validation company, has released the Picus Red Report 2024. This fourth annual report shares learnings from an in-depth analysis of more than 600,000 real-world malware samples and identifies the most common techniques leveraged by attackers. This year, Picus uncovered a surge of “Hunter-killer” malware from the research findings, demonstrating a drastic shift in adversaries’ ability to identify and neutralize advanced enterprise defenses such as next-gen firewalls, antivirus, and EDR. According to the report, there was a 333% increase in malware that can actively target defensive systems in an attempt to disable them. 

“We are witnessing a surge in ultra-evasive, highly aggressive malware which shares the characteristics of hunter-killer submarines,” said Dr. Suleyman Ozarslan, Picus Security Co-founder and VP of Picus Labs. “Just as these subs move silently through deep waters and launch devastating attacks to defeat their targets’ defenses, new malware is designed to not only evade security tools but actively bring them down. We believe cybercriminals are changing tact in response to the security of average businesses being much-improved, and widely used tools offering far more advanced capabilities to detect threats. A year ago, it was relatively rare for adversaries to disable security controls. Now, this behavior is seen in a quarter of malware samples and is used by virtually every ransomware group and APT group.” 

The Red Report helps security teams better understand and battle cyber attacks by identifying the Top 10 most prevalent MITRE ATT&CK techniques exhibited by the latest malware. Its insights help prioritize defensive actions against commonly used techniques. Additional key findings include: 

Evolving tactics challenge detection and response: 70% of malware analyzed now employ stealth-oriented techniques by attackers, particularly those that facilitate evading security measures and maintaining persistence in networks.Invisibility at the forefront of evasion: There was a 150% increase in the use of T1027 Obfuscated Files or Information. This highlights a trend toward hindering the effectiveness of security solutions and obfuscating malicious activities to complicate the detection of attacks, forensic analysis, and incident response efforts. The ransomware saga continues: There was a 176% increase in the use of T1071 Application Layer Protocol, which are being strategically deployed for data exfiltration as part of sophisticated double extortion schemes. 

To combat Hunter-killer malware and stay ahead of 2024 malware trends, Picus is urging organizations to embrace machine learning, protect user credentials, and consistently validate their defenses against the latest tactics and techniques used by cybercriminals. 

“It can be incredibly difficult to detect if an attack has disabled or reconfigured security tools, because they may still appear to be working as expected,” said Huseyin Can YUCEEL, Security Research Lead at Picus Security. “Preventing attacks that would otherwise operate under the radar requires the use of multiple security controls with a defense-in-depth approach. Security validation must be a starting point for organizations to better understand their readiness and identify gaps. Unless an organization is proactively simulating attacks to assess the response of its EDR, XDR, SIEM, and other defensive systems that may be weakened or eliminated by Hunter-killer malware, they will not know they are down until it is too late.” 

For more information: 

Download the Picus Red Report 2024Read the Red Report 2024 blog 

Methodology

Between January 2023 and December 2023, Picus Labs, the research unit of Picus Security, analyzed 667,401 unique files, with 612,080 (92%) categorized as malicious. Sources of these files include but are not limited to commercial and open-source threat intelligence services, security vendors and researchers, malware sandboxes, malware databases, and forums. From these files, a total of 7,754,801 actions were extracted, an average of 13 malicious actions per malware. These actions were then mapped to 7,015,759 MITRE ATT&CK techniques, an average of 11 techniques per malware. 

To compile the Picus Red Report 2024 Top Ten, Picus Labs researchers determined the number of malicious files that used each technique. They then calculated the percentage of malware in the dataset that utilized that technique. For example, the T1055 Process Injection technique was used in 195,044 (32%) of the 612,080 malicious files analyzed. 

About Picus Security

Picus Security helps security teams consistently and accurately validate their security posture. Our Security Validation Platform simulates real-world threats to evaluate the effectiveness of security controls, identify high-risk attack paths to critical assets, and optimize threat prevention and detection capabilities.

As the pioneer of Breach and Attack Simulation, we specialize in delivering the actionable insights our customers need to be threat-centric and proactive. 

Picus has been named a ‘Cool Vendor’ by Gartner and is recognized by Frost & Sullivan as a leader in the Breach and Attack Simulation (BAS) market.

Infographic – https://mma.prnewswire.com/media/2338835/Picus_Infographic.jpg
Logo – https://mma.prnewswire.com/media/2183222/4540977/Picus_Logo.jpg

 

View original content:https://www.prnewswire.co.uk/news-releases/surge-in-hunter-killer-malware-uncovered-by-picus-security-302059723.html

Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Technology

Thinkfree showcases AI-Driven future workplace at CES 2025

Published

on

By

LAS VEGAS and SEOUL, South Korea, Dec. 27, 2024 /PRNewswire/ — Thinkfree, a global software company in productivity tools and AI technology, will participate in CES 2025, taking place in Las Vegas from January 7 to January 10, 2025. During the event, Thinkfree will present its vision for the future workplace powered by AI technologies.

Thinkfree will present scenarios showcasing the potential of AI to revolutionize productivity in next-generation workspaces, including autonomous vehicles and smart offices. Visitors will explore how Thinkfree solutions enable efficient data access, accurate information discovery, key detail summarization, and streamlined collaboration in mobile or in-vehicle work environments.

Thinkfree’s suite of advanced solutions powers these transformative experiences, including Thinkfree Office Online – a web-based productivity suite, Refinder AI – an AI-powered enterprise search and assistant solution, Thinkfree Drive – an integrated cloud storage and office platform, and Thinkfree Intellect – a tailored knowledge management service designed for enterprises.

Deekay Kim, CEO of Thinkfree, stated, ” As the digital transformation of work environments progresses, Thinkfree is committed to harnessing our expertise in productivity tools and AI to drive efficiency in the future workplaces, such as autonomous vehicles and smart offices. CES 2025 will provide us with the perfect platform to highlight our innovations to the global market and encourage partnership that will help define the future of work.”

Visitors to Thinkfree’s booth in North Hall, Booth #8676, at the Las Vegas Convention Center can experience solutions such as Thinkfree Office Online and Refinder AI, with experts on hand to offer guidance on technology integration and partnership opportunities.

View original content to download multimedia:https://www.prnewswire.com/news-releases/thinkfree-showcases-ai-driven-future-workplace-at-ces-2025-302339522.html

SOURCE THINKFREE

Continue Reading

Technology

ROMOSS to Unveil Next-Gen Power Solutions at CES 2025

Published

on

By

LAS VEGAS, Dec. 27, 2024 /PRNewswire/ — ROMOSS, a global leader in 3C accessories, is set to unveil its latest innovations at CES 2025, marking another milestone in consumer energy solutions. During the event, the brand will introduce its new ultra-thin magnetic power bank and a fresh series of products for cycling use. Attendees are invited to experience the products at ROMOSS’s booth at the Las Vegas Convention Center, South Hall 2, Booth 35900.

ROMOSS has established itself as a prominent global brand, specializing in a wide range of charging products, including power banks, portable power stations, charging cables, and chargers. With a customer base exceeding 100 million worldwide, the brand is dedicated to creating stylish, highly functional, and market-driven charging solutions.

In addition to launching new products, ROMOSS will showcase a selection of its popular offerings at CES 2025. These include power banks from the MagCarry, MagAir, GoldenBox, and FlashPower series.

A standout product, the ROMOSS MagCarry 10000mAh 30W/15W Magnetic Power Bank, exemplifies the brand’s commitment to innovation. With a 10000mAh capacity, it features MagTrinity Tech for seamless compatibility with Apple devices, two-way 30W wired charging, and a built-in portable cable. Its 15N magnetic force ensures a secure connection, making it ideal for travel and on-the-go use.

Lightweight and easy to carry, The ROMOSS 5000mAh MagAir Power Bank features an ultra-slim 0.3-inch design, 14N magnetic force, and a fashionable metallic texture. It offers 20W and 15W charging options, combining style and functionality for on-the-go power needs.

The ROMOSS GoldenBox (Elite) Combo is a 5000mAh power bank with 20W and 15W magnetic charging. It includes a built-in card holder, 15N magnetic force, a foldable stand, and a premium metal texture, offering both style and functionality.

For those needing more power, the ROMOSS FlashPower series offers high-capacity options of 10,000mAh and 20,000mAh. With 130W max power, multi-protocol compatibility, a full-color LCD screen, and a durable anodized aluminum alloy shell, it is perfect for heavy-duty use and extended trips.

Beyond power banks, ROMOSS will also present an array of noteworthy products, such as the ROMOSS X1000 Portable Power Station, the brand’s first expandable portable power station. As part of the EXPLORE series, the X1000 is ideal for outdoor enthusiasts and professionals and can charge up to ten devices simultaneously, including laptops, smartphones, and drones. With a 1008Wh battery and 1000W inverter, it provides stable power for various scenarios. Expandable to 16kWh with a 4000W output, it meets household energy needs during outages.

These products reflect ROMOSS commitment to enhancing user experience and addressing the diverse needs of modern consumers. By focusing on functionality and design, we aim to redefine convenience in charging solutions.

ROMOSS aims to deeply engage with the style-conscious younger generation, offering premium products tailored to their preferences through meticulous market research. ROMOSS versatile products for camping, outdoor events, and everyday use are designed to stay trendy and attractive.

With a robust global marketing network and an annual shipment volume exceeding 50 million units, ROMOSS has established a strong presence in regions such as East Asia, Southeast Asia, and Southern Africa. The integration of online and offline channels has been instrumental in solidifying its position as a market leader.

To explore more on ROMOSS’s technological innovations, please visit its booth (LVCC, South Hall 2, Booth 35900) during CES 2025. For more information, please visit ROMOSS’s official website at ROMOSS CES, or follow the brand on social media:

Facebook: https://www.facebook.com/romosspage/
Instagram: https://www.instagram.com/romoss_global/
TikTok: https://www.tiktok.com/@romossus
YouTube: https://www.youtube.com/@RomossGlobal/videos

Media Contact
Sandra Lee, Sales Manager: sales@romoss.com
Janice Wong, Overseas Marketing, marketingteam@romoss.com 

View original content to download multimedia:https://www.prnewswire.com/news-releases/romoss-to-unveil-next-gen-power-solutions-at-ces-2025-302339048.html

SOURCE ROMOSS

Continue Reading

Technology

Inspira™ Announces Pricing of $3.2M Private Placement by New and Existing Investors of the Company

Published

on

By

RA’ANANA, Israel, Dec. 27, 2024 /PRNewswire/ — Inspira Technologies Oxy B.H.N. Ltd. (NASDAQ: IINN), (NASDAQ: IINNW), (“Inspira Technologies,” “Inspira” or the “Company”), a groundbreaking respiratory support technology company, a pioneer in life-support technology, today announced the pricing of a private placement offering consisting of the issuance and sale of 4,608,715 ordinary shares, no par value per share (or pre-funded warrants in lieu thereof) and ordinary warrants to purchase up to 4,608,715 ordinary shares, at a combined purchase price of $0.70. The ordinary warrants have a term of eighteen months and have an exercise price of $1.10 per share.

 

 

The Company intends to use the net proceeds from the offering for working capital and general corporate purposes. The closing of the private placement is expected to occur on or about December 30, 2024, subject to the satisfaction of certain customary closing conditions.

Dawson James Securities is acting as the exclusive placement agent for the private placement.

The securities described above were offered pursuant to an exemption from the registration requirements under Section 4(a)(2) of the Securities Act of 1933, as amended (the “Securities Act”), and Rule 506(b) of Regulation D promulgated thereunder. The securities have not been registered under the Securities Act or applicable state securities laws. Accordingly, the securities may not be offered or sold in the United States except pursuant to an effective registration statement or an applicable exemption from the registration requirements of the Securities Act and such applicable state securities laws.

This press release shall not constitute an offer to sell or the solicitation of an offer to buy any of the securities described herein, nor shall there be any sale of these securities in any state or jurisdiction in which such offer, solicitation or sale would be unlawful prior to registration or qualification under the securities laws of any such state or jurisdiction.

Inspira™ Technologies OXY B.H.N. Ltd.

Inspira Technologies is an innovative medical technology company in the life support and respiratory treatment arena. The Company has developed a breakthrough Augmented Respiration Technology (INSPIRA™ ART), a groundbreaking device poised to revolutionize the $19 billion mechanical ventilation market. With 20 million intensive care unit patients with acute respiratory failure each year, many of whom rely on mechanical ventilators, the INSPIRA ART offers a potential alternative by elevating and stabilizing decreasing oxygen saturation levels in minutes without a ventilators, with patient being awake during treatment. The INSPIRA ART is being equipped with the HYLA™ blood sensor technology, a real-time continuous blood monitoring technology, aiming to alert physicians of changes in a patient’s condition without the need for intermittent actual blood samples, and potentially supporting physicians in making informed decisions.

The Company’s INSPIRA™ ART100 system has obtained FDA 510(k) clearance for use in Cardiopulmonary Bypass procedures, along with the Israeli AMAR certification for both Extra-Corporeal Membrane Oxygenation and Cardiopulmonary Bypass procedures.

The Company’s other products and technologies, including the INSPIRA ART also known as the INSPIRA™ ART500 or Gen 2, the INSPIRA™ Cardi-ART portable modular device, VORTX orbiting Oxygen Delivery System and HYLA™ blood sensor, are currently being designed and developed, and have not yet been tested or used in humans and have not been approved by any regulatory entity.

For more information, please visit our corporate website: https://inspira-technologies.com.

Forward-Looking Statements

This press release contains express or implied forward-looking statements pursuant to U.S. Federal securities laws. These forward-looking statements and their implications are based on the current expectations of the management of the Company only and are subject to a number of factors and uncertainties that could cause actual results to differ materially from those described in the forward-looking statements. For example, the Company is using forward-looking statements when it discusses the expected use of proceeds and the expected closing of the private placement. These forward-looking statements and their implications are based solely on the current expectations of the Company’s management and are subject to a number of factors and uncertainties that could cause actual results to differ materially from those described in the forward-looking statements. Except as otherwise required by law, the Company undertakes no obligation to publicly release any revisions to these forward-looking statements to reflect events or circumstances after the date hereof or to reflect the occurrence of unanticipated events. More detailed information about the risks and uncertainties affecting the Company is contained under the heading “Risk Factors” in the Company’s annual report on Form 20-F for the fiscal year ended December 31, 2023 filed with the U.S. Securities and Exchange Commission (the “SEC”), which is available on the SEC’s website, www.sec.gov.

Contact:

For more information, contact:
Inspira Technologies – Media Relations
Email: info@inspirao2.com
Phone: +972-9-9664485

Logo – https://mma.prnewswire.com/media/1668495/Inspira_Technologies_Logo.jpg

 

View original content:https://www.prnewswire.com/news-releases/inspira-announces-pricing-of-3-2m-private-placement-by-new-and-existing-investors-of-the-company-302339638.html

SOURCE Inspira Technologies

Continue Reading

Trending