We're excited to announce that IronNet was awarded a AAA designation by SE LABS ® for enterprise advanced security. We received the highest rating for “excellent performance” based on month-long tests of IronDefense. bit.ly/3N4iI6z #cybersecurity #NDR #cyber #defense

Another #opendir #phishing page targeting MD Department of Labor located at hxxps://mdgovbeaconpays[.]us/Maryland-loginn/

It was great getting to partner with Amazon Web Services in their booth at Space Symposium yesterday! Visit our website to see how #CollectiveDefense is helping to defend mission-critical data and intellectual property for space industry stakeholders. ironnet.com/industries/spa…

Russian site hxxp://ektension.com targeting MetaMask 🦊 users to steal backup pass-phrases for crypto wallets The fake T&Cs state: "We never store keys, addresses, transactions, balances, hashes or any personal information... Never sell data for profit. Never!" #opendir #phishing

Our latest #ThreatIntelligence brief is live. Every month our SOC shares its latest IoCs, threat rules and findings in an effort to promote collaboration and information sharing. #CollectiveDefense bit.ly/3DNsrKf

Continuing the trend of crypto scam sites with a fake forex trading platform at hxxp://stocksforeignexchange.com Fake web apps of this type are increasingly common as reports show $14 billion of cryptocurrency have been stolen in the past year #Phishing #opendir #Crypto

Learn how a collective defense approach can provide a greater level of cybersecurity even as the sophistication, frequency, and speed of cyber attacks increase. Download the white paper here: bit.ly/3rKeAyH

#phishing site aiming for user names/member numbers and passwords for Mountain America Credit Union (Mountain America CU) and Suncoast Credit Union (Suncoast Credit Union), found at hxxps[:]//previewm[.]com/

A recent CERT-UA alert lists Cobalt Strike C2 servers used in attacks on Ukraine. The IronNet Threat Research Team regularly monitors the internet for malicious C2 servers, including Cobalt Strike. Read the full report on the IronNet blog: ironnet.com/blog/tracking-…

📺 #OALABS Tutorial 📺 Using #Dumpulator #Emulation to decrypt strings in the new 64-bit #Emotet malware youtu.be/HSwHtU2aGyI

At the beginning of May, IronNet’s Threat Research Team discovered a #cyberattack campaign by MUMMY SPIDER and #Emotet designed to test TTPs for future campaigns. Read more about our findings here ⤵️ ironnet.com/blog/detecting…

#phish sites and #opendir located purporting to be Instagram Blue Badge request forms at fedbackteamshelp[.]online and globalfromnetwork[.]com.

Extremely valuable - and really fun to explore when dealing with a variety of data sources.

Today is IronNet's 8th birthday! Over the last eight years, we brought together the best minds in cyber from almost every industry to bring our mission to life. Together, we're delivering the power of collective cybersecurity to defend companies, sectors, and nations.

Recent reporting indicates that MUMMY SPIDER and other actors that use Emotet have begun to conduct more targeted operations, increasing the likelihood of spear-phishing against enterprise employees. Read more here: ironnet.com/blog/detecting…

#phishing #opendir site posing as MSA Safety (MSA), a producer of mining safety equipment. The website is found at hxxp[:]//msatsc[.]com and includes a suspicious software downloads page.

Been working on some new features for PowerView, it's still a work in progress but just pushed a few, cert auth for LDAPS and StartTLS for Get-DomainObject, Get-DomainUser, Get-DomainComputer and Set-DomainObject 1/2 github.com/0xe7/PowerSplo…

It's hard for me to convey how cool the "Diamond Ticket" implementation from Charlie Clark & Andrew (based on work from Tal Be'ery & Michael Cherny) really is. This is a "I wish I would have thought of it" type of idea that was implemented elegantly by Charlie and Andrew 1/2

We are honored to have our Dean Teffer, PhD, VP of Detection & Prioritization, speak during the 2022 Innovation & Technology Forum in Austin, TX. We hope you caught today's chat.

Fox-IT just open sourced their enterprise forensics tooling dissect. This is a big project that some of the smartest people I know have worked on. It supports many filesystems and file formats, all as Python libraries. Docs: docs.dissect.tools / code: github.com/fox-it/dissect