MITRE Engenuity has just released the results of the latest round of ATT&CK Evaluations which this year focused on two well-known threat actors: Wizard Spider and Sandworm. This marks the third time that ReaQta, an IBM Company, has successfully completed the ATT&CK Evaluations with top-quality alerts, showing ReaQta’s capabilities in delivering world-class protection against even …
Category Archives: Machine Learning
Understanding the Avaddon Ransomware: Is your organization equipped to stop zero-day threats?
Recently, The Financial Times reported that Asian subsidiaries of a French Global insurance company were hit by a latest ransomware attack known as Avaddon. Attackers seized 3TB of data, impacting IT operations in Thailand, Malaysia, Hong Kong and the Philippines, taking hold of sensitive information like medical records and hospital data. What is Avaddon ransomware …
Defending attacks to the SWIFT network
Rising cyber fraud and insider threat cases continue to plague the financial industry growing the need to secure SWIFT networks Leveraging behavioral analyses, ReaQta’s Detection Strategies enables banks to fully customize unique sets of detections to guard access to SWIFT networks As SWIFT cyber fraud rises in recent years, financial institutions today face a devastating …
ReaQta Launches ReaQta-EON and Hive-Guard
Introducing two new additions to the ReaQta suite of solutions, ReaQta-EON and Hive Guard.
Meet HIVE GUARD: The Anti-Malware Module
ReaQta’s Anti-malware module Hive Guard adds pre-execution dynamic emulation, behavioral heuristics and signature-based prevention combined with a new A.I. based analysis module.
ReaQta Behavioral Engine and Virustotal
Over the past 3 months ReaQta has been working closely with VirusTotal to integrate ReaQta-Hive‘s behavioral engine, today we are excited to announce that the integration is complete and available to the public. VirusTotal is a free service that analyzes files and URLs to detect malicious content, the platform is well-known among security researchers as it …
Proactive Threat Hunting with A.I.
Proactive Threat Hunting helps in the early detection of new threats and in the discovery of weak spots that can be leveraged by an attacker to gain or maintain access to an infrastructure. Traditional IOCs, combined with ATT&CK Mitre TTPs and Artificial Intelligence for discovery of new behaviors raises the bar for the attackers, helping responders to identify …
Active Learning as a powerful tool in the Cyber Security arsenal
When datasets are hard to label or highly skewed, Active Learning shows great potential to help both the algorithms and the analyst to make sense of data faster and more efficiently. The promise of AI in cyber-security has long been that of helping humans to automate and simplify the daunting task of preventing data loss …
Continue reading “Active Learning as a powerful tool in the Cyber Security arsenal”
From False Positive to True Positive: the story of Mavinject.exe, the Microsoft Injector
Mavinject is a legitimate Windows component that can be used, and abused, to perform arbitrary code injections inside any running process. As this is a common component on Windows, it can be leveraged to perform living-off-the-land attacks.
