Incident Response

Cisco IOS XE Vulnerability CVE-2023-20198 – thousands of internet-exposed devices potentially compromised!

SECUINFRA Falcon Team • 03.01.2024 | Incident Response
Edge infrastructure, such as internet-exposed firewalls, routers, VPN-Gateways etc. are a common initial access target for cybercrime and espionage actors since these appliances are challenging to defend. According to the vulnerability discovery service LeakIx as many as 30 thousand internet-exposed Cisco devices may already have been compromised...
Read more

Hide your Hypervisor: Analysis of ESXiArgs Ransomware

SECUINFRA Falcon Team • 07.02.2023 | Incident Response | Vulnerabilities
Today many businesses rely on virtualization technology to run and scale their infrastructure. One of the most popular Hypervisor systems on the market is VMware ESXi, which is regularly targeted in Ransomware attacks for the last 3+ years to increase damage to the victims IT systems.
Read more
Hand holding light bulb and business digital marketing innovation technology icons on network connection, blue background

Cyber attack successful – Which 3 disciplines of IT Security are needed now!

Evgen BlohmYasin Ilgar • 24.01.2023 | Compromise Assessment | Digital Forensics | Incident Response
In order to minimize monetary and reputational damage in the event of a successful IT security attack, immediate and correct response measures, a comprehensive overview of the extent of the cyber attack, and a full clarification of the incident are indispensable.
Read more

N-W0rm analysis (Part 2)

SECUINFRA Falcon Team • 04.02.2022 | Digital Forensics | Incident Response
We will first begin at the entry point of this RAT and analyze its executed code before we jump into all possible modules this RAT possesses.
Read more

N-W0rm analysis (Part 1)

SECUINFRA Falcon Team • 01.02.2022 | Digital Forensics | Incident Response
According to Malware Bazaar, samples have been distributed since around mid-January. The final payload is a .NET RAT, which allows the attacker to send commands to the infected system.
Read more

Reporting obligations in the event of an IT security incident

SECUINFRA Falcon Team • 15.10.2021 | Digital Forensics | Incident Response
This article is intended to provide a deeper insight into the important topic of reporting obligations in the event of an IT security incident.
Read more

Digital threat: Phishing

SECUINFRA Falcon Team • 05.10.2021 | Digital Forensics | Incident Response
In order to protect one's own company against phishing, awareness must first and foremost be created among employees. This can be done through workshops, phishing simulation or company policies.
Read more

Incident Response Process Models using the Example of the Federal Office for Information Security (BSI)

SECUINFRA Falcon Team • 17.09.2021 | Incident Response
BSI has set up a model that divides the procedure into 6 different phases, which is very finely granulated compared to other models.
Read more

Digital Threats: Ransomware

SECUINFRA Falcon Team • 02.09.2021 | Incident Response
In order to shed some light on the subject, we would like to look at a few facts and figures about ransomware as well as a typical course of attack.
Read more

Incident Response Diary – Compromised Email box

SECUINFRA Falcon Team • 17.08.2021 | Incident Response
That a compromised mailbox is an extremely unpleasant situation is something everyone should be able to imagine. In a recent case we have investigated, attackers have been particularly clever.
Read more

CYBER DEFENSE.

MADE IN GERMANY.

Our portfolio

About SECUINFRA

©2024 SECUINFRA GmbH. All rights reserved.

Cookie Consent with Real Cookie Banner