Sysdig

❓How are cyberattacks evolving❓ You asked via our poll and Stefano Chierici, Sysdig Threat Research Team (TRT) Lead Manager, answered! Want to learn more about the latest threats like #𝗟𝗟𝗠𝗷𝗮𝗰𝗸𝗶𝗻𝗴, CRYSTALRAY, or RUBYCARP? Stefano and other members of Sysdig TRT will be at #BlackHat booth #𝟭𝟳𝟱𝟬 ready for you to ask them 𝘢𝘯𝘺𝘵𝘩𝘪𝘯𝘨. Filling your #BHUSA schedule? Don't miss Stefano's talk! 🗣️ 𝗠𝗮𝗹𝗶𝗰𝗶𝗼𝘂𝘀 𝗘𝘅𝗲𝗰𝘂𝘁𝗶𝗼𝗻𝘀: Unmasking Container Drifts and Fileless Malware with Falco 📅 Wed, Aug 7 | 3:15 – 4:20pm PT 📍 Business Hall - Arsenal Station 4

You've heard of the SSH-Snake threat, now get ready for the next phase... 𝗖𝗥𝗬𝗦𝗧𝗔𝗟𝗥𝗔𝗬. 🚨 🔎 In a breaking article, the Sysdig Threat Research Team exposes CRYSTALRAY, a rising threat actor using the SSH-SNAKE #pentesting tool to exploit Confluence vulnerabilities. 🌐 Now affecting over 1,500 victims, their operation has evolved, leveraging several #OpenSource tools for mass scanning, credential theft, #cryptomining, and more. Read more from Sysdig TRT 🔗: https://okt.to/njBXuK

Missed our live webinar on accelerating cloud investigations with #CISO Matthew Rosenquist? 🚀 💡 Discover how to streamline your #SecOps, minimize manual effort, and achieve the 555 Benchmark for #CDR (5s to detect, 5min to triage, 5min to respond). ▶️ Watch the replay now: https://okt.to/nfwOly

🔎 In our era of lightning-fast cloud attacks, no organization is safe without a mature threat detection and response program. 🎩 Join us for an exclusive demo at #BlackHat Arsenal to witness the combined power of open-source Falco and Event-Driven Ansible by Red Hat for neutralizing #CloudSecurity threats in real-time! 📅 Add it to your #BHUSA calendar here: https://okt.to/7Z1AkN

🚨 𝗖𝗿𝗶𝘁𝗶𝗰𝗮𝗹 𝗩𝘂𝗹𝗻𝗲𝗿𝗮𝗯𝗶𝗹𝗶𝘁𝘆 𝗔𝗹𝗲𝗿𝘁: Unpacking CVE-2024-6387 In their recent blog, the Sysdig Threat Research Team dives deep into "RegreSSHion," a critical vulnerability in OpenSSH that could allow unauthenticated attackers to gain root-level privileges and remotely access some Linux systems. Protect your cloud estate with our step-by-step guide on how to identify vulnerable packages using Sysdig. 🔗: https://okt.to/t7Z51h

📣 ARE YOU READY #BLACKHAT!? This August, meet the minds leading the charge in cloud threat intelligence at #BHUSA booth 𝟭𝟳𝟱𝟬. 🔥 ⚡ Seize your chance to chat about the speed of cloud threats with the elite Sysdig Threat Research Team face-to-face! Learn more 👉 https://okt.to/v7RxtY

How is the cloud different? Can your EDR extend to the cloud? ☁ 🎤  Join Sysdig CEO Suresh Vasudevan for a must-attend Linkedin Live session unpacking the opportunities and complexities of cloud detection and response (#CDR) alongside special guests and renowned #CISO Advisors Chris Forbes and Matt Stamper, CIPP/US, CISA, CISM, CRISC, CDPSE, QTE. 💡 Kicking off July 23rd, this livestream marks the first episode of Sysdig’s new Sysdig LIVE series. Don’t miss this unique opportunity to hear from some of the brightest leaders in #CloudSecurity and ask the critical questions every CISO should be asking.

🎩 If you missed out on chatting with Sysdig's threat experts at #BlackHat last year, now's your chance! The Sysdig Threat Research Team will be waiting for you at #BHUSA Booth 1750 ready to share their insights on the 2024 cyber threat landscape. Not attending this year? Sysdig TRT is still here to answer your questions! Which threat research topics intrigue you the most? Let us know below! 👇

🌐 How secure is your supply chain? In our interconnected world, outsourcing key business functions is a necessity — but with convenience comes risk. ⚖️ Regulators are cracking down on cybersecurity and third-party supply chain risks. Now, enterprises can be held responsible for security shortcuts their third-party providers take. 🔒 So, how can you convince third-party vendors to take security seriously? Sysdig Cybersecurity Strategist Crystal Morin has the answer in her latest blog. ➡️ https://okt.to/uPsEpl

Threat actors have been active during the first half of 2024. Are you up to speed on the top 3 discoveries made by the Sysdig Threat Research Team this year? 👤🕵️♂️ 🤖 #𝗟𝗟𝗠𝗷𝗮𝗰𝗸𝗶𝗻𝗴: Coined by Sysdig TRT, this term describes attackers exploiting large language models (LLMs) at the victim's expense at up to $46,000 per day! https://lnkd.in/dPqxEGH5 🐍 𝗦𝗦𝗛-𝗦𝗡𝗔𝗞𝗘: Uncovered by Sysdig TRT, threat actors use network mapping tool SSH-Snake to infiltrate systems and exfiltrate sensitive data. By masquerading as legitimate SSH traffic, it can evade detection, making it a potent threat to network security. https://lnkd.in/dEg_Pjwf 🐟 𝗥𝗨𝗕𝗬𝗖𝗔𝗥𝗣: This Romanian botnet group exposed by Sysdig TRT has been active for over a decade. The group uses public exploits and brute force attacks to deploy and leverage its botnet for financial gain through #cryptomining, DDoS, and phishing operations — including targeting credit cards. https://lnkd.in/e_KM_rgM Visit 🔗: https://okt.to/gz24dn to get your hands on all of Sysdig TRT's research!