“I had the opportunity to know Shakeel as a friend and an advisor, he is an inspiring leader, and always focusing on making things better with professional aspects. Throughout the years, Shakeel has been a great mentor who is always eager to connect with extraordinary people to collaborate on some distinct cybersecurity projects.”
About
- Cyber Threat Intelligence
- Incident Detection, Triage, and Investigation
-…
Activity
-
We have conducted a comprehensive Service Review with our partner Alruqee Group and visited several important customers in Saudi-Arabia. 🇸🇦 Great…
We have conducted a comprehensive Service Review with our partner Alruqee Group and visited several important customers in Saudi-Arabia. 🇸🇦 Great…
Liked by Shakeel Ali
-
Honoured ✨, with fellow ambassadors, to welcome His Excellency, President Tharman Shanmugaratnam, Patron of the Singapore Red Cross, to our stall at…
Honoured ✨, with fellow ambassadors, to welcome His Excellency, President Tharman Shanmugaratnam, Patron of the Singapore Red Cross, to our stall at…
Liked by Shakeel Ali
-
On the Growth of Mobile Wallets in Jordan: A Cautionary Note The mobile wallet ecosystem in Jordan experienced unprecedented 10X growth during the…
On the Growth of Mobile Wallets in Jordan: A Cautionary Note The mobile wallet ecosystem in Jordan experienced unprecedented 10X growth during the…
Liked by Shakeel Ali
Experience
-
Cyber Security Space
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
Education
Publications
-
Kali Linux 2018: Assuring Security by Penetration Testing, 4th Edition
Packt Publishing
English Version (Packt Publishing Ltd)
ISBN(13): 9781789341768
ISBN(10): 1789341760
Russian Version (Piter Publishing House, St. Petersburg)
ISBN(13): 9785446112524
ISBN(10): 5446112520Other authors -
-
Kali Linux 2 - Assuring Security by Penetration Testing, 3rd Edition
Packt Publishing
English Version (Packt Publishing Ltd)
ISBN(13): 9781785888427
ISBN(10): 1785888420Other authors -
-
Kali Linux - Assuring Security by Penetration Testing
Packt Publishing Ltd
English Version (Packt Publishing Ltd)
ISBN(13): 9781849519489
ISBN(10): 184951948X
Korean Version (Acorn Publishing)
ISBN(13): 9788960777187
ISBN(10): 8960777188
Chinese Version (Beijing People's Posts and Telecommunications Press)
ISBN(13): 9787115378446
ISBN(10): 7115378444Other authors -
-
Lead Reviewer: Penetration Testing with BackBox
Packt Publishing Ltd
English Version (Packt Publishing Ltd)
ISBN(13): 9781783282975
ISBN(10): 1783282975Other authors -
-
BackTrack 4: Assuring Security by Penetration Testing
Packt Publishing Ltd
English Version (Packt Publishing Ltd)
ISBN(13): 9781849513944
ISBN(10): 1849513945
Korean Version (Acorn Publishing - Acorn+PACKT)
ISBN(13): 9788960772168
ISBN(10): 896077216X
Chinese Version (Machinery Industry Press)
ISBN(13): 9787111366430
ISBN(10): 7111366433
Other authors -
-
Co-Author: Cyber Security Standards, Practices and Industrial Applications: Systems and Methodologies
IGI Global Publishing
See publicationEnglish Version
ISBN(13): 9781609608514
ISBN(10): 1609608518
Honors & Awards
-
Educational Affiliation
-
- BSc Computer Science
- MSc Information Systems Security -
ISO/IEC Certifications
JAS-ANZ (Joint Accreditation System of Australia and New Zealand)
Lead Auditor:
ISO/IEC 19790:2012 - IT Security Techniques (Cryptographic Modules)
ISO/IEC 20000:2011 - IT Service Management (ITSM)
ISO/IEC 27001:2013 - Information Security Management System (ISMS)
ISO/IEC 27015:2012 - Information Security Management Guidelines for Financial Services
ISO/IEC 27032:2012 - Cyber Security
ISO/IEC 27035:2011 - Security Incident Management
ISO/IEC 27037:2012 - IT Security Techniques (Guidelines for Forensics)
ISO/IEC 27040:2015 - IT Security…Lead Auditor:
ISO/IEC 19790:2012 - IT Security Techniques (Cryptographic Modules)
ISO/IEC 20000:2011 - IT Service Management (ITSM)
ISO/IEC 27001:2013 - Information Security Management System (ISMS)
ISO/IEC 27015:2012 - Information Security Management Guidelines for Financial Services
ISO/IEC 27032:2012 - Cyber Security
ISO/IEC 27035:2011 - Security Incident Management
ISO/IEC 27037:2012 - IT Security Techniques (Guidelines for Forensics)
ISO/IEC 27040:2015 - IT Security Techniques (Storage Security)
ISO/IEC 31010:2009 - Risk Management (Risk Assessment Techniques)
ISO/IEC 22301:2012 - Business Continuity Management System (BCMS)
ISO 14001:2004 - Environmental Management System (EMS)
ISO/IEC 9001:2008 - Quality Management System -
Professional Certifications / Development
-
- CEH (Certified Ethical Hacker)
- CCNA (Cisco Certified Network Associate)
- SnortCP (Snort Certified Professional)
- CRTL (Certified Red Team Lead)
- CRTO (Certified Red Team Operator)
- OSCP (Offensive Security Certified Professional)
- eWPTX (WebApp Penetration Tester eXtreme)
- OIE (Offensive IoT Exploitation)
- CRPO (Certified Ransomware Protection Officer)
- CTI / APT Analyst (CT365, CISA/NICCS)
- CERT Digital Forensics Professional (SEI CMU)
- Autopsy…- CEH (Certified Ethical Hacker)
- CCNA (Cisco Certified Network Associate)
- SnortCP (Snort Certified Professional)
- CRTL (Certified Red Team Lead)
- CRTO (Certified Red Team Operator)
- OSCP (Offensive Security Certified Professional)
- eWPTX (WebApp Penetration Tester eXtreme)
- OIE (Offensive IoT Exploitation)
- CRPO (Certified Ransomware Protection Officer)
- CTI / APT Analyst (CT365, CISA/NICCS)
- CERT Digital Forensics Professional (SEI CMU)
- Autopsy and Cyber Triage DFIR (Basis Technology)
- Certified Metaverse Security Professional (IMI)
- CIISCM CATS (Certified Anti-Terrorism Specialist)
Organizations
-
Ethical-Hacker.Net
-
- PresentSecurity Research Initiatives & Collaboration
-
ACM Professional Member (6629094)
-
-
Chartered International Institute of Security & Crisis Management (CIISCM)
-
-
Internet Engineering Task Force (IETF) / Internet Society (ISOC) Member (58486), UK Chapter
-
-
OWASP Member (011203598)
-
-
WASC Threat Classification Project, Author and Contributor
-
Recommendations received
8 people have recommended Shakeel
Join now to viewMore activity by Shakeel
-
Ich habe einen neuen Job und arbeite jetzt als Director, Global Transformation Lead Opex bei Teva Pharmaceuticals.
Ich habe einen neuen Job und arbeite jetzt als Director, Global Transformation Lead Opex bei Teva Pharmaceuticals.
Liked by Shakeel Ali
-
Veeam Issues Patch for Critical RCE Vulnerability in Service Provider Console: Veeam has released security updates to address a critical flaw…
Veeam Issues Patch for Critical RCE Vulnerability in Service Provider Console: Veeam has released security updates to address a critical flaw…
Posted by Shakeel Ali
-
Cisco Warns of Exploitation of Decade-Old ASA WebVPN Vulnerability: Cisco on Monday updated an advisory to warn customers of active exploitation of a…
Cisco Warns of Exploitation of Decade-Old ASA WebVPN Vulnerability: Cisco on Monday updated an advisory to warn customers of active exploitation of a…
Posted by Shakeel Ali
-
NachoVPN Tool Exploits Flaws in Popular VPN Clients for System Compromise: Cybersecurity researchers have disclosed a set of flaws impacting Palo…
NachoVPN Tool Exploits Flaws in Popular VPN Clients for System Compromise: Cybersecurity researchers have disclosed a set of flaws impacting Palo…
Posted by Shakeel Ali
-
North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks: The North Korea-aligned threat actor known as Kimsuky has been…
North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks: The North Korea-aligned threat actor known as Kimsuky has been…
Posted by Shakeel Ali
-
A Guide to Securing AI App Development: Join This Cybersecurity Webinar: Artificial Intelligence (AI) is no longer a far-off dream—it’s here…
A Guide to Securing AI App Development: Join This Cybersecurity Webinar: Artificial Intelligence (AI) is no longer a far-off dream—it’s here…
Posted by Shakeel Ali
-
THN Recap: Top Cybersecurity Threats, Tools and Tips (Nov 25 - Dec 1): Ever wonder what happens in the digital world every time you blink? Here's…
THN Recap: Top Cybersecurity Threats, Tools and Tips (Nov 25 - Dec 1): Ever wonder what happens in the digital world every time you blink? Here's…
Posted by Shakeel Ali
-
8 Million Android Users Hit by SpyLoan Malware in Loan Apps on Google Play: Over a dozen malicious Android apps identified on the Google Play Store…
8 Million Android Users Hit by SpyLoan Malware in Loan Apps on Google Play: Over a dozen malicious Android apps identified on the Google Play Store…
Posted by Shakeel Ali
-
INTERPOL Arrests 5,500 in Global Cybercrime Crackdown, Seizes Over $400 Million: A global law enforcement operation has led to the arrest of more…
INTERPOL Arrests 5,500 in Global Cybercrime Crackdown, Seizes Over $400 Million: A global law enforcement operation has led to the arrest of more…
Posted by Shakeel Ali
-
The Importance of Data Anonymization In Safeguarding Sensitive Legal Information: Several high-profile and global law firms have been under the radar…
The Importance of Data Anonymization In Safeguarding Sensitive Legal Information: Several high-profile and global law firms have been under the radar…
Posted by Shakeel Ali
-
What makes a trailblazer? Inspired by John Mulaney’s Dreamforce roast: When you bring a comedian to offer a keynote address, you need to expect the…
What makes a trailblazer? Inspired by John Mulaney’s Dreamforce roast: When you bring a comedian to offer a keynote address, you need to expect the…
Posted by Shakeel Ali
-
What’s up India? PixPirate is back and spreading via WhatsApp: Quick recap This blog post is the continuation of a previous blog regarding PixPirate…
What’s up India? PixPirate is back and spreading via WhatsApp: Quick recap This blog post is the continuation of a previous blog regarding PixPirate…
Posted by Shakeel Ali
-
83% of organizations reported insider attacks in 2024: According to Cybersecurity Insiders’ recent 2024 Insider Threat Report, 83% of organizations…
83% of organizations reported insider attacks in 2024: According to Cybersecurity Insiders’ recent 2024 Insider Threat Report, 83% of organizations…
Posted by Shakeel Ali
-
What does resilience in the cyber world look like in 2025 and beyond?: Back in 2021, we ran a series called “A Journey in Organizational…
What does resilience in the cyber world look like in 2025 and beyond?: Back in 2021, we ran a series called “A Journey in Organizational…
Posted by Shakeel Ali
-
The Last Stop: Protecting an NHL Franchise Against Cyberattacks: For the Seattle Kraken, the National Hockey League’s 32nd franchise, maintaining a…
The Last Stop: Protecting an NHL Franchise Against Cyberattacks: For the Seattle Kraken, the National Hockey League’s 32nd franchise, maintaining a…
Posted by Shakeel Ali
-
Wanted Russian Hacker Linked to Hive and LockBit Ransomware Arrested: A Russian cybercriminal wanted in the U.S. in connection with LockBit and Hive…
Wanted Russian Hacker Linked to Hive and LockBit Ransomware Arrested: A Russian cybercriminal wanted in the U.S. in connection with LockBit and Hive…
Posted by Shakeel Ali
-
The Evolution of Cloud Strategy: Beyond “Cloud First”: In the rapidly evolving digital landscape, the mantra “Cloud First” is becoming a relic of the…
The Evolution of Cloud Strategy: Beyond “Cloud First”: In the rapidly evolving digital landscape, the mantra “Cloud First” is becoming a relic of the…
Posted by Shakeel Ali
Other similar profiles
Explore more posts
-
DeXpose
DATA BREACH ALERT ☣ - Alleged Leak of 120k Private Database of Toyota Motor Philippines Corporation Threat actor claims to have leaked the Private Database of 120k Toyota Motor Philippines Corporation customers data (2023). Which includes User Id, User Name, Phone Number, First Name, Last Name, Middle Name, Birth date, Age, City, Country, Email, Gender, State, Last Login etc. - #data_breach #data_leak #infosec #dark_web #DataBreach #DataLeak #Services #CyberThreat #CyberAttack
-
Diyako Secure Bow
#DiyakoSecureBow ———————————— CISO as A Service (vCISO) CYBERSECURITY ADVISORY Tactics, Techniques, and Procedures of Indicted APT40 Actors Associated with China’s MSS Hainan State Security Department Alert CodeAA21-200 Summary This Joint Cybersecurity Advisory was written by the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) to provide information on a Chinese Advanced Persistent Threat (APT) group known in open-source reporting as APT40. This advisory provides APT40’s tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) to help cybersecurity practitioners identify and remediate APT40 intrusions and established footholds. APT40—aka BRONZE MOHAWK, FEVERDREAM, G0065, Gadolinium, GreenCrash, Hellsing, Kryptonite Panda, Leviathan, MUDCARP, Periscope, Temp.Periscope, and Temp.Jumper—is located in Haikou, Hainan Province, People’s Republic of China (PRC), and has been active since at least 2009. APT40 has targeted governmental organizations, companies, and universities in a wide range of industries—including biomedical, robotics, and maritime research—across the United States, Canada, Europe, the Middle East, and the South China Sea area, as well as industries included in China’s Belt and Road Initiative. On July 19, 2021, the U.S. Department of Justice (DOJ) unsealed an indictment against four APT40 cyber actors for their illicit computer network exploitation (CNE) activities via front company Hainan Xiandun Technology Development Company (Hainan Xiandun). Hainan Xiandun employee Wu Shurong cooperated with and carried out orders from PRC Ministry of State Security (MSS) Hainan State Security Department (HSSD) intelligence officers Ding Xiaoyang, Zhu Yunmin, and Cheng Qingmin to conduct CNE. Wu’s CNE activities resulted in the theft of trade secrets, intellectual property, and other high-value information from companies and organizations in the United States and abroad, as well as from multiple foreign governments. These MSS-affiliated actors targeted victims in the following industries: academia, aerospace/aviation, biomedical, defense industrial base, education, government, healthcare, manufacturing, maritime, research institutes, and transportation (rail and shipping). Click here for a PDF version of this report. https://lnkd.in/dVQDgJHU https://lnkd.in/d4fd2xtZ Special Thanks❤️😇👍🏽🙏 CISA Alumni Group Cybersecurity and Infrastructure Security Agency -Secure Business Continuity- 2024.07.31 —————————————————— #CyberSecurity #MitreAttack #Chain #RiskManagement #SecureBusinessContinuity
-
CITIC Telecom International CPC Limited
💡 #CPC_Blog | Safeguarding Your Data with Comprehensive #Cybersecurity Strategies Another recent data breach involved a public institution in Hong Kong, where personal data stored on contractors' #cloud platforms was not deleted after the contract expired. The incident highlights the importance of choosing trustworthy and experienced cloud service providers. This article will explore a range of ICT solutions, including high-quality cloud services, security measures for safeguarding cloud assets, and cybersecurity solutions. It aims to assist enterprises in protecting business #data and achieving high-quality business development. 🔎Read the blog: https://lnkd.in/gwnZTe7g #CITICTelecomCPC #GlobalLocal #ICTSolutionsPartner #InnovationNeverStops #cybersecurity #DigitalTransformation #Innovation #TrustCSI #cyberthreats #AIDrive #ArtificialIntellegence #MSS #ManagedSecuritySerivce #DataLeak #CloudService
-
Amira Armond
"OSCs must retain artifacts used as evidence for the assessment for the duration of the validity period of the certificate of assessment, and at minimum, for six years from the date of certification assessment as addressed in 32 CFR 170.17(c)(4). The OSC is responsible for compiling relevant artifacts as evidence and having knowledgeable personnel available during the assessment. The organizational artifacts are proprietary to the OSC and will not be retained by the assessment team unless expressly permitted by the OSC. To preserve the integrity of the artifacts reviewed, the OSC creates a hash of assessment evidence (to include a list of the artifact names, the return values of the hashing algorithm, and the hashing algorithm used) and retains the artifact information for six years. The information obtained from the artifacts is an information collection and is provided to the C3PAO for uploading into the CMMC instantiation of eMASS." The above text is from the DoD's June 21, 2024 submission to the Federal Register. It describes the expected information collection level-of-effort for a CMMC Level 2 assessment. Some more information: The DoD expects evidence collection and archival, assessment planning and results, C3PAO records about their assessment staff, and submission of data into CMMC eMASS to take 525 hours on average, per assessed company. This is just the effort related to paperwork. It doesn't cover the time spent interviewing or demonstrating the system. It doesn't cover the time preparing. Bottom line? The DoD seems 𝒅𝒆𝒕𝒆𝒓𝒎𝒊𝒏𝒆𝒅 to get their defense contractors cyber-secure, no matter the cost. They are treating this as seriously as the defenses for our key military and government installations, and looking at a timeline of just a few years to get our manufacturing and military support base resilient to cyber-attack. If you're ready to start working seriously on NIST SP 800-171 and #CMMC compliance, or want to get scheduled for your certification assessment, give my team at Kieri Solutions - Authorized C3PAO a call. We specialize in helping companies become compliant without outsourcing their control of IT to a third party. Read more about the DoD's submission below: https://lnkd.in/eTFi9dVK
47 Comments -
NanoSec.Asia
🚀 Exciting News We are bringing these Technical Hands On Training to support cybersecurity professionals to upskill and tackle challenges. 1️⃣ Operationalise OSINT with Manh Pham & Minh N. 2️⃣ Exploit Development 101 with Qiling Framework with KaiJern Lau (xwings) 3️⃣ Threat Hunting and Detection Engineering with Razwan M 4️⃣ The Car Hacker’s Methodology and Checklist for Application Security Hackers with Jay Turla 🎯 Transmission of knowledge is the key trait of our DNA. 👉 Register here: https://sibersiaga.mil.my/ #sibersiaga24 #OSINT #exploit #threathunting #carhacking
-
SOCRadar® Extended Threat Intelligence
🎯 Would you like to get SOCRadar's special Threat Actor card deck in the new year? Test your knowledge with SOCRadar's Threat Actor Quiz Series! 🌐 Today and tomorrow, we’ll post challenging questions about infamous threat actors. Answer correctly and win exclusive Threat Actor Cards—your go-to source for in-depth insights into the world's most dangerous cybercriminals. 💡 How it works: Those who give the most correct answers to the 8 questions we will publish on Thursday and Friday will win free Threat Actor cards. The card deck will be sent to the winners by post in January. 📖 Ready to learn, engage, and challenge yourself? Answer this question—your expertise might just be rewarded! Try our Free Tool "Threat Actor Intelligece": https://lnkd.in/difjenp5 #CyberThreatIntelligence #ThreatActors #SOCRadar
-
FirstHackers News
A significant vulnerability, CVE-2024-37629, has been discovered in SummerNote 0.8.18, allowing Cross-Site Scripting (XSS) via the Code View function. Summernote is a JavaScript library for creating WYSIWYG editors online. An attacker can use XSS to insert harmful scripts into a trusted application or website. An XSS attack often starts with an attacker luring a user to click on a malicious link. According to security researcher Sergio Medeiros, 10,000 web apps have a 0-day vulnerability that can be exploited with a simple XSS payload. Detecting XSS Vulnerability in the Editor Given similar XSS concerns in editors like CKEditor and TinyMCE, the security researcher decided to investigate the WYSIWYG Editor. This led to the SummerNote website, where users can see the WYSIWYG editor’s features on the homepage, along with a GitHub repository URL to examine the codebase. ~First Hackers News To Continue reading this article, click on this link >>> https://lnkd.in/gsRA6ivt #vulnerability #summernote #xss #codeview #javascript #attacker #maliciouslink #securityresearcher #website #zeroday #cyberattack #cybersecurity #cybernews #fhn #firsthackersnews #informationsecurity #latestnews
-
911Cyber
👉 What are the latest cybersecurity alerts, incidents, and news? 🚨 #CyberAlerts 5 New Critical Vulnerabilities Added to CISA’s Known Exploited Vulnerability List Source: Cybersecurity and Infrastructure Security Agency New TeamTNT Cryptojacking Campaign Targets CentOS Servers with Rootkit Source: Vito Alfano and Nam Le Phuong via Group-IB Ivanti Cloud Appliance Vulnerability Exploited in Ongoing Cyberattacks Source: Ivanti Iran’s UNC1860 Exploits Passive Backdoors in Middle Eastern Networks Source: Google Threat Actors Misuse Splinter Red Team Tool for Post-Exploitation Source: Dominik Reichel via Unit42 by Palo Alto Networks Unit 42 💥 #CyberIncidents Australia’s Compass Group Confirms Second Ransomware Attack Source: David Hollingworth via Cyber Daily Altman Specialty Plants Reports Suffers Breach Exposing Sensitive Consumer Data Source: Altman Plants BingX Confirms Minor Asset Loss Amid Suspicious Hot Wallet Activity Source: BingX via X Schools in Lancashire, UK Face Major Disruption Due to Ransomware Attack Source: Gemma Sherlock via BBC Sensitive Star Health Customer Data Leaked Through Telegram Chatbots Source: The New Indian Express 📢 #CyberNews Federal Trade Commission Uncovers Surveillance of Children by Social Media Firms Source: Federal Trade Commission Germany Shuts Down 47 Crypto Exchanges Allegedly Supporting Underground Economy Source: Federal Criminal Police Office, Germany DDoS Attacks Overtake Ransomware and Are Now the Dominant Cyber Threat in Europe Source: European Union Agency for Cybersecurity (ENISA) Global Operation Dismantles Major Phishing Network Affecting 480,000 Victims Source: Europol HSBC Pilots Quantum-Safe Technology for Tokenized Gold Transactions Source: HSBC Holdings This Cyber Briefing is powered by https://911cyber.app Get help from cybersecurity first responders today! Find the full stories at cybermaterial.com Or click here 👇 to read the summaries. https://lnkd.in/e-uiPGVW #cyberbriefing #informationsecurity #CISA #Ransomware #CentOS #Ivanti #Splinter #Telegram #Germany #Crypto
-
CyberCover
✅ Company(ies) Involved: The Cyber Security Agency and SkillsFuture SG ✅ Data Compromised: Not Applicable - this is an educational opportunity, not a breach. ✅ Impact: An increased number of trained non-cyber professionals in cybersecurity, enhancing Singapore's defense against cyber threats. ✅ Measures Taken: Launch of a new centre providing foundational training in cybersecurity for non-cyber professionals. The age of digitalization is upon us, but with its immense benefits comes the escalating threat of cyberattacks. Recognizing this impending concern, The Cyber Security Agency (CSA) and SkillsFuture SG have taken an unprecedented step by launching a ground-breaking initiative [Read More](https://lnkd.in/e7vhtrdM). It’s notable that these organizations are focusing on empowering non-IT professionals with cybersecurity skills, thus democratising cyber knowledge across different industry sectors. This approach foregrounds the importance every individual has in safeguarding their organization's cyberspace. By doing so, it also strengthens our collective resilience as we spearhead into the future. In essence, this joint venture represents more than just training; it is an investment in our defense infrastructure against intensifying global cyber threats. As all facets of life increasingly digitalize and intertwine with cyberspace: partners or individuals from every sector must be adequately equipped to face these hidden dangers lurking online. An initiative worth lauding indeed! #cybersecurity #digitalfuture
-
Pinochle.AI
Pinochle.AI : Pinochle: Threat Hunting 🔍 Proactive Threat Detection: Detect and counter threats before they escalate with advanced threat hunting technology. 🔍 Key Insight: Outsmart hidden threats with proactive detection techniques. 🎯 Impact: Boost your security posture by actively seeking out and addressing potential risks. 🚀 Learn More: Uncover how Pinochle can keep you ahead in the battle against threats. https://pinochle.ai/ https://www.kyureeus.com/ #cybersecuritytips #ITSecurity #OTSecurity #informationsecurity #CyberSec #networking #networksecurity #infosecurity #cyberattacks #security #cybersecurityawareness #cyberdefense #threats #cybersecurity
-
CybrMonk
Dark Web Profile: Tropic Trooper (APT23)Dark Web Profile: Tropic Trooper (APT23) Tropic Trooper, also known as Pirate Panda and APT 23, is a Chinese state-sponsored cyber threat group that has been active since 2011. Specializing in espionage, the group primarily targets sensitive sectors like government, healthcare, and transportation. Their operations have been focused on areas such as Taiwan, Hong Kong, and the Philippines, where they employ advanced tactics to compromise networks and steal valuable information. Illustration of Tropic Trooper (Bing AI) Who is Tropic Trooper? Tropic Trooper is a cyber espionage group attributed to Chinese state-sponsored activities, primarily active since 2011. The group operates under various names, including Pirate Panda, APT 23, Iron, KeyBoy, Bronze Hobart, Earth Centaur. They are known for their sophisticated techniques and targeted attacks, often focusing on sectors crucial to national interests, such as government, telecommunications, and technology. With a strong emphasis on intelligence gathering, Tropic Trooper utilizes social engineering and advanced malware to infiltrate networks and extract sensitive data. Their operations typically align with the geopolitical interests of China. Their attacks frequently involve the infiltration of networks through spear-phishing campaigns, which are designed to deceive individuals into providing access to confidential data or systems. Over the years, Tropic Trooper has adapted its tactics, demonstrating a keen ability to innovate and evade detection, which makes them a persistent threat in the cyber landscape. Their targeted approach and technical prowess underscore their significance as a key player among state-sponsored threat actors. How Does Tropic Trooper Operate? Initial Access Tropic Trooper initiates attacks primarily through spear-phishing campaigns, carefully crafted with extensive social engineering to appeal directly to their targets. These emails often contain malicious attachments, such as Microsoft Office files or PDFs, or embed links that, once clicked, lead to websites hosting exploit kits. Point of entry, a malicious doc (TrendMicro) They exploit common application vulnerabilities, including those in Microsoft Office, to execute malware payloads that establish a foothold in the victim’s system. Tropic Trooper’s spear-phishing emails are customized, often incorporating language, subject matter, and scenarios relevant to the target’s environment to maximize the chances of engagement. This calculated initial access strategy enables Tropic Trooper to breach networks within government, healthcare, and high-value sectors across Southeast Asia. Thus, they not only gain access through phishing, but they can also exploit Web server vulnerabilities, especially Exchange Server, and create attack vectors using Webshell. A malicious module was found inside Umbraco CMS – an open source .NET content management system- on the compromised server (Secur
-
BABL AI
💡 News Update 💡 Cyber Security Agency of Singapore (CSA) has published an extensive set of guidelines and a companion guide aimed at securing AI systems, a move signaling the nation’s proactive stance on managing cybersecurity risks associated with AI. The new resources, titled “Guidelines on Securing AI Systems” and the “Companion Guide on Securing AI Systems,” were developed in consultation with AI and cybersecurity experts across sectors. The CSA emphasizes the need for both system owners and developers to adopt a lifecycle approach to AI security to address potential vulnerabilities effectively. #csa #ai #cybersecurity #news https://lnkd.in/gX26VQ_J
-
CyberCureME - Cyber Security Marketplace
Vulnerabilities Patched in Kiuwan Code Security Products After Long Disclosure Process: It took code security firm Kiuwan nearly two years to patch several serious vulnerabilities found in its SAST products. The post Vulnerabilities Patched in Kiuwan Code Security Products After Long Disclosure Process appeared first on SecurityWeek.
-
CVE Find
[CVE-2024-38366: CRITICAL] Vulnerability patched on trunk.cocoapods.org in September 2023 after potential Remote Code Execution (RCE) risk via DNS MX lookup manipulation. Issue fixed with commit 001cc3a430e75a16307f5fd6cdff1363ad2f40f3 to prevent unauthorized access. https://lnkd.in/eaFsTpEt
-
Secure Traces
A Vietnamese-speaking threat actor has been linked to an information-stealing campaign targeting government and education entities in Europe and Asia with a new Python-based malware called PXA Stealer. PXA Stealer has the capability to decrypt the victim's browser master password and use it to steal the stored credentials of various online accounts. At Secure Traces, we proactively strengthen your information security. Talk to us for more details! #malware #PXAStealer #cybersecurity
Explore collaborative articles
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
Explore MoreOthers named Shakeel Ali
-
Shakeel Ali
HR at Oil and Natural Gas Corporation Ltd
-
Shakeel Ali
-
Shakeel Ali
People & Culture
-
Shakeel Ali
HR Consultant
302 others named Shakeel Ali are on LinkedIn
See others named Shakeel Ali