threat intelligence Archives - ThreatsHub Cybersecurity News

Using Python to unearth a goldmine of threat intelligence from leaked chat logs

June 1, 2022 TH Author Conti, Cybersecurity, Microsoft security intelligence, MSTICPy, python, threat intelligence

Dealing with a great amount of data can be time consuming, thus using Python can be very powerful to help analysts sort information and extract the most relevant data for their investigation. The open-source tools library, MSTICpy, for example, is a Python tool dedicated to threat intelligence. It aims to help threat analysts acquire, enrich, analyze, and visualize data.
The post Using Python to unearth a goldmine of threat intelligence from leaked chat logs appeared first on Microsoft Security Blog. READ MORE HERE…

Microsoft Secure

Discover the anatomy of an external cyberattack surface with new RiskIQ report

April 21, 2022 TH Author Cybersecurity, Network Security, threat intelligence, Zero Trust

Learn how supply chains, shadow IT, and other factors are growing the external attack surface—and where you need to defend your enterprise.
The post Discover the anatomy of an external cyberattack surface with new RiskIQ report appeared first on Microsoft Security Blog. READ MORE HERE…

Microsoft Secure

HAFNIUM targeting Exchange Servers with 0-day exploits

March 2, 2021 TH Author Cybersecurity, Exchange Server, HAFNIUM, Microsoft security intelligence, Microsoft Threat Intelligence Center (MSTIC), MSRC, Security Intelligence, threat intelligence, Threat protection

Microsoft has detected multiple 0-day exploits being used to attack on-premises versions of Microsoft Exchange Server in limited and targeted attacks. In the attacks observed, threat actors used this vulnerability to access on-premises Exchange servers, which enabled access to email accounts, and install additional malware to facilitate long-term access to victim environments. Microsoft Threat Intelligence Center (MSTIC) attributes this campaign with high confidence to HAFNIUM.
The post HAFNIUM targeting Exchange Servers with 0-day exploits appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

ZINC attacks against security researchers

January 28, 2021 TH Author Cybersecurity, Microsoft security intelligence, nation state, Security Intelligence, Security Researchers, threat intelligence, Threat protection, ZINC

In recent months, Microsoft has detected cyberattacks targeting security researchers by an actor we track as ZINC. Observed targeting includes pen testers, private offensive security researchers, and employees at security and tech companies.
The post ZINC attacks against security researchers appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

From unstructured data to actionable intelligence: Using machine learning for threat intelligence

August 8, 2019 TH Author AI and machine learning, Automation, Cybersecurity, Endpoint security, indicators of compromise (IoC), machine learning, Microsoft Defender Advanced Threat Protection, Microsoft security intelligence, Security Intelligence, threat intelligence, TTPs, Windows Security

Machine learning and natural language processing can automate the processing of unstructured text for insightful, actionable threat intelligence.
The post From unstructured data to actionable intelligence: Using machine learning for threat intelligence appeared first on Microsoft Security. READ MORE HERE…