Not yet another Death Note caused by the Ryuk Ransomware

enSilo Corporate and Product, cybersecurity

Ryuk ransomware is a derivative of the Hermes ransomware. Its objective is to encrypt assets such as files and data, cause the unavailability of resources and force all victims to pay a ransom or suffer the consequences. enSilo prevents Ryuk ransomware attacks.

Read More

enSilo Protects Against Shamoon-Related Attacks

enSilo Corporate and Product

Discovered by the security community earlier this month, the third version of Shamoon malware destroys files and data on all systems before overwriting the MBR. enSilo prevents attacks by Shamoon malware.  
Read More

2019 Security Predictions

enSilo Corporate and Product

In 2018, the world witnessed many significant breaches and new types of fast-moving, sophisticated endpoint security threats ranging from the use of Powershell through fileless malware attacks to hardware compromised within the supply chain. Here’s a look back at the year that was and our predictions for what to expect in 2019.
Read More

The Gartner Market Guide for Endpoint Detection and Response Solutions Validates the enSilo Approach to Protecting Endpoints

enSilo Corporate and Product, cybersecurity

The latest version of the Gartner Market Guide for Endpoint Detection and Response Solutions validates the need for real-time prevention and why the detect-then-decide approach simply can’t keep up with today’s threats. 

Read More

L0RDIX: Multipurpose Attack Tool

enSilo Breaking Malware

L0rdix, currently available for purchase in underground forums, is aimed at infecting Windows-based machines, combines stealing and cryptocurrency mining methods, can avoid malware analysis tools and is designed to be a universal "go-to" tool for attackers. Indicators suggest the tool is still under development and we expect to encounter more
Read More

City of Atlanta Ransomware Attack

cybersecurity, enSilo Corporate and Product

Overview

On March 22 of this year, the City of Atlanta experienced one of the most devasting and costly ransomware attacks to date in the US. For one week, the city floundered while five of its thirteen local government departments were held hostage, unable to perform their functions. For city employees logging-in to their devices that morning,

Read More

Enter The DarkGate: New Cryptocurrency Mining and Ransomware Campaign

enSilo Breaking Malware

An active and stealthy cryptocurrency mining and ransomware campaign infecting targets in Spain and France which leverages multiple bypass techniques to evade detection by traditional AV.

Read More

Exactis Data Breach: The Risk of Data Exposure Without Endpoint Protection

cybersecurity, enSilo Corporate and Product

Earlier this year Exactis, a Florida-based marketing data broker, had their database (close to 340 million individual records) exposed on a public server. Though hacking efforts didn't expose the data, the personally identifiable information was inexplicably left on an unsecured server without basic security safeguards. 
Read More

Melting Down PatchGuard: Leveraging KPTI to Bypass Kernel Patch Protection

enSilo Breaking Malware, cybersecurity, Windows, meltdown, KPTI, PatchGuard

The mitigation for Meltdown created a new part in the kernel which PatchGuard left unprotected, making hooking of system calls and interrupts possible, even with HVCI enabled.

Read More

Game of Trojans: Dissecting the #Khalesi Infostealer Malware

Business, Industry, enSilo Corporate and Product, Malware

Summary

During the end of August 2018, the security community discovered an infostealer malware in the wild named Khalesi. This malware was identified by the security community as part of the Kpot malware campaign. Some of the recent Khalesi variants in this campaign were compiled with a Visual Basic 6 (VB6) compiler while the others were

Read More

Tags