Live Webinar
TRU
Intelligence Briefing
Tuesday, July 18, 2023
11:00 AM - 11:45 AM ET | 8:00 - 8:45 AM PT | 3:00 - 3:45 PM GMT | 4:00 - 4:45 PM BST
TRU
Join us on July 18th for this month’s TRU Intelligence Briefing. Our Threat Response Unit (TRU) will review:
-
Threat Landscape: A review of recently observed malware by the SOC such as GootLoader, Sorrillus RAT, Rusty Stealer, and notable vulnerabilities impacting MOVEit Transfer (CVE-2023-36934, CVE-2023-36932, CVE-2023-36933), Fortinet (CVE-2023-27997), and the recent Microsoft zero-day vulnerabilities (CVE-2023-36884, CVE-2023-35311, CVE-2023-32049, CVE-2023-32046, CVE-2023-36874)*
-
A brief update on cyberattacks related to ongoing geo-political tensions.
-
Nitrogen Campaign: A recent campaign discovered by eSentire which leverages DLL Sideloading and various C2 frameworks such as Pyramid and Cobalt Strike to achieve their actions on objectives.
-
Tactical Threat Response (TTR) – Pyramid: An overview of Pyramid, a Python-based Post Exploitation tool and associated TRU detections and recommendations.
Don’t miss out on this opportunity to ask our industry-renowned TRU team your most pressing questions during the live Q&A.
Register now to reserve your spot!
*Topics subject to change based on evolving threat landscape
Featured Speakers
Edward Crowder
Threat Intelligence Researcher
JR DePre
Staff Threat Researcher
Paul Aitken
Threat Intelligence Researcher
Featured Resource
Notorious Russian Gang and Affiliates Increase Ransomware Attacks Against Europe
While Conti leaders may have shut down operations as a formal entity in May 2022, that did not stop two affiliate groups, BlackByte and Black Basta, from making headlines.
Download this report to learn more about:
- Notable ransomware attacks deployed by BlackByte and Black Basta, and the subsequent impact on victim organisations
- An analysis of Conti’s history, including how the ransomware group has evolved and the state of their operations
- Insights and recommendations from TRU on how to defend your organisation from this cyber threat
Previous Webinars
Join eSentire's Threat Response Unit (TRU) as they discuss the latest attacks observed by our Security Operations Center (SOC).
Download this webinar to learn more about:
- The Hunt for VENOM SPIDER Part 2: How eSentire discovered the real mastermind behind the Golden Chickens Malware-as-a-Service operation
- Overview of associated TRU detections and recommendations for defending against VENOM SPIDER
- Updates on GuLoader, AsyncRAT, and BatLoader
- Notable vulnerabilities impacting Barracuda, GitLab, and MOVEit Transfer
- A brief update on cyberattacks related to ongoing geo-political tensions
Join eSentire's Threat Response Unit (TRU) as they discuss the latest attacks observed by our Security Operations Center (SOC).
Download this webinar to learn more about:
- Gootloader Unloaded: How eSentire researchers disrupted a malware operator's SEO poisoning attack chain using the operator’s own anti-research tactics against them
- Tactical Threat Response (TTR) – Gootloader: Overview of the Gootloader infection chain and associated TRU detections
- Updates on Qakbot, Raspberry Robin, and NetSupport Manager RAT
- Notable vulnerabilities impacting PaperCut, Google, and Microsoft
- A brief update on threat actors and cyberattacks related to ongoing geo-political tensions