More than 1 million users are infected every week from infostealer malware, leading to account takeovers through stolen credentials and session cookies. Over 80 million stealer logs have been circulated in various dark web forums, chats, and marketplaces, enabling attackers to log directly into corporate and customer accounts through bypassing 2FA and other security controls – potentially exposing organizations to major security breaches.

In this session, we’ll reveal threat actor TTPs, the complexity of the cybercrime ecosystem, what information a stealer log captures, and how you can use that to your advantage in your threat intelligence reporting and threat mitigation processes to strengthen your security posture.

Threat Intelligence and Flare

The Flare Threat Exposure Management (TEM) solution empowers organizations to proactively detect, prioritize, and mitigate the types of exposures commonly exploited by threat actors. Our platform automatically scans the clear & dark web and prominent threat actor communities 24/7 to discover unknown events, prioritize risks, and deliver actionable intelligence you can use instantly to improve security.

Flare integrates into your security program in 30 minutes and often replaces several SaaS and open source tools. Learn more by signing up for our free trial.

The post Using Infostealer Logs for Advanced Threat Intelligence Work appeared first on Flare | Cyber Threat Intel | Digital Risk Protection.

Join Flare in discovering the hidden emerging groups that hold the potential to stage major attacks:

• DragonForce, a previously little known group that after a 2024 revamp has experienced massive growth
• BrainCipher, a known example of a group of twelve “Lockbit Builders”, which leverage leaked lockbit source code and GenAI to launch major attacks
• RansomHub, a midsized contender on the rise that may potentially replace incumbents Lockbit and AlphaV

Ransomware Readiness and Flare

The Flare Threat Exposure Management (TEM) solution empowers organizations to proactively detect, prioritize, and mitigate the types of (third-party) exposures commonly exploited by threat actors. Our platform automatically and constantly scans the clear & dark web and illicit Telegram channels to discover unknown events, automatically prioritize risks, and deliver actionable intelligence you can use instantly to improve security.

With Flare Supply Chain Ransomware Exposure Monitoring, gain unique visibility and proactive security across your extended supply chain to efficiently mitigate threat exposures that exist within ransomware data leaks. Learn more by booking a demo.

The post Dark Web Deep Dive: Emerging Ransomware appeared first on Flare | Cyber Threat Intel | Digital Risk Protection.

In this webinar, you’ll learn where they came from, what they do, and why you should look out for them. Featured topics include:

• Ransomware Affiliate Recruitment: Learn where infamous ransomware groups such as Lockbit recruit affiliates and how dark web forums play a key role in the ransomware ecosystem.
• Raid Forums and Secret Forums: Join Flare threat intelligence analysts as we cover a brief history of the dark web forum ecosystem.
• Major Actors in Cybercrime Forums: Understand the important players that makeup the threat actor landscape on forums such as Breach, XSS, and Exploit.

Dark Web Forum Monitoring with Flare

The Flare Threat Exposure Management (TEM) solution empowers organizations to proactively detect, prioritize, and mitigate the types of exposures commonly exploited by threat actors. Our platform automatically scans the clear & dark web and prominent threat actor communities 24/7 to discover unknown events, prioritize risks, and deliver actionable intelligence you can use instantly to improve security.

Flare integrates into your security program in 30 minutes and often replaces several SaaS and open source tools. Learn more by signing up for our free trial.

The post Dark Web Deep Dive: Forum Ecosystems appeared first on Flare | Cyber Threat Intel | Digital Risk Protection.

• IBM’s 2024 X-FORCE Threat Report has found that breaching strategy has shifted from hacking in to simply logging in through credential acquisition
• Through a leaked XSS conversation, Initial Access Brokers (IABs) have been found to be selling organizational credentials in bulk to infamous ransomware groups such as LockBit
• Communication platform Telegram has become an increasingly popular distribution network, forming its own unique stealer log ecosystem

These are only a few examples how cybercrime has evolved. In this webinar, get the knowledge you need to arm your organization with the tools needed to set up a proactive defense. Join Mathieu Lavoie, Eric Clay, Tammy Harper, and Nick Ascoli in this webinar as they take a deep dive into the evolving nature of threats on the Dark Web.

Dark Web Monitoring and Flare

The Flare Threat Exposure Management (TEM) solution empowers organizations to proactively detect, prioritize, and mitigate the types of exposures commonly exploited by threat actors. Our platform automatically scans the clear & dark web and prominent threat actor communities 24/7 to discover unknown events, prioritize risks, and deliver actionable intelligence you can use instantly to improve security.

Flare integrates into your security program in 30 minutes and often replaces several SaaS and open source tools. Learn more by signing up for our free trial.

The post The State of the Dark Web 2024 appeared first on Flare | Cyber Threat Intel | Digital Risk Protection.

Jason and Nick discussed topics to include how companies should view exposure related to their attack surface, how language models are changing the threat landscape, and why stealer logs are one of the major threats to organizations in 2024.

Monitoring the Cyber Threat Landscape with Flare

The Flare Threat Exposure Management (TEM) solution empowers organizations to proactively detect, prioritize, and mitigate the types of exposures commonly exploited by threat actors. Our platform automatically scans the clear & dark web and prominent threat actor communities 24/7 to discover unknown events, prioritize risks, and deliver actionable intelligence you can use instantly to improve security.

Flare integrates into your security program in 30 minutes and often replaces several SaaS and open source tools. Learn more by signing up for our free trial.

The post Navigating the Cyber Threat Landscape with Jason Haddix & Nick Ascoli: Offensive Security, LLMs, and Infected Devices appeared first on Flare | Cyber Threat Intel | Digital Risk Protection.

Our focus will also be on mitigation strategies, including technical measures such as distributed network resources and content delivery networks (CDNs), along with the importance of threat intelligence. By monitoring pre-attack announcements and attributing incidents, organizations can better prepare and respond to DDoS attacks. Join us for this informative session.

The post Cyber Threats in Modern Warfare: Examining Crowdsourced DDoS Attacks appeared first on Flare | Cyber Threat Intel | Digital Risk Protection.

During the webinar, experts Jason Haddix (BuddoBot CISO), Serge-Olivier Paquette (Flare Director of Innovation), and Eric Clay (Flare VP of Marketing) shed light on:

• The use of open-source models, such as LLAMA and Vicuna, where public weights allow malicious actors to bypass safety mechanisms.
• Current capabilities of AI models, from problem-solving to zero-shot learning.
• The four-step training process of AI models, emphasizing the significance of Reinforced Learning with Human Feedback (RLHF).
• The rise of cybercrime-specific AI models like FraudGPT and WormGPT and their implications.
• Current and future risks, including inadvertent data leaks and the potential for AI “agents” to automate tasks like vulnerability searches and spear-phishing.
• Key mitigation strategies, from detecting AI-generated content to implementing data tokenization.

Stay informed and prepared by understanding the evolving AI threats in the cyber landscape.

The post From Business to Black Market: The New Frontier of AI Exploits appeared first on Flare | Cyber Threat Intel | Digital Risk Protection.

Watch the video where Flare Security Researcher, Eric Clay, discusses how the dark web is reacting to the AI revolution with Mathieu Lavoie CTO and Serge-Olivier Paquette, Innovation Director. They covered topics such as customized spear-phishing campaigns, automated exploit detection, vishing attacks, hacking AI models, and the challenges faced by security teams. You won’t want to miss it. 

The post How the Dark Web is Reacting to the AI Revolution appeared first on Flare | Cyber Threat Intel | Digital Risk Protection.

The post The Typology of Illicit Telegram Channels appeared first on Flare | Cyber Threat Intel | Digital Risk Protection.

Join Former Deputy Director of the FBI Andrew Mccabe & Former USPS CISO Gregory Hirsch for a live Q&A session with Flare CEO Norman Menz. We’ll be covering key trends in cybercrime in 2023, how companies can build effective incident response programs, and why current cyber defense strategies aren’t cutting it in an increasingly unstable threat environment. Andrew and Gregory will answer questions around:

• – What has changed in the 2023 cyber threat landscape, and why instability and rapid change will continue to be the norm
• – Key steps to crisis management in incident response activities from seasoned security leaders
• – How increasing geopolitical tension and uncertainty plays into enterprise cybersecurity risk
• – Intellectual property theft by foreign nation states and the increasing targeting of U.S. research, agriculture, and technology sectors
• – How companies should reorganize their incident response and threat intelligence functions to build threat lead cybersecurity programs
• – APT’s & Cybercrime emanating from Russia as political isolation grows
• – Generative Artificial Intelligence, misinformation, and other key trends in the threat landscape

The post <strong>Confidence in Crisis:</strong> <strong>Incident Response & Cybercrime in 2023</strong> appeared first on Flare | Cyber Threat Intel | Digital Risk Protection.