banner-blog.jpg

MENLO SECURITY BLOG

Articles, trends, and advice on cloud security without compromise. Keep up with the latest blog insights on web isolation, network cybersecurity, malware, and more.

Trickbot—New Year | Old Lure

Posted by Vinay Pidathala on Jan 29, 2021

2021 will be a challenging year for security professionals. The fall out from the SUNBURST attack and the Solarwinds hack is yet to be fully understood and we all remain in an elevated state of awareness and concern.

 

Our Threat labs team is constantly looking for new emerging threats by analyzing security events and over 40 million sessions a day on our  isolation-powered cloud security company and recently observed the re-emergence of a previously known threat, commonly known as Trickbot.

 

Read More

Tags: malware, drive-bys, malicious download, trickbot, threat labs

Increase In Attack: SocGholish

Posted by Krishnan Subramanian on Dec 17, 2020

Menlo Labs has uncovered a increase in a drive-by attack that impersonates legitimate browser, Flash, and Microsoft Teams updates

 

In the last two months, the Menlo Labs team has witnessed a surge in drive-by download attacks that use the “SocGholish” framework to infect victims. This particular framework is known to be widely used to deliver malicious payloads by masquerading as a legitimate software update. Isolation prevents this type of attack from delivering its payload to the endpoint. Here’s what we know.

 

Read More

Tags: drive-bys, SocGholish, social engineering, Chrome update, browser update, Microsoft Teams update, malicious ZIP file, malicious download, Firefox update, Flash update

Update on DoD’s Cloud-Based Internet Isolation

Posted by Kowsik Guruswamy on Oct 28, 2020

I’m very proud of what we do at Menlo Security. We work very hard to make sure organizations and users around the world can safely access the tools and information they need to keep businesses running. We prevent confidential data from falling into the wrong hands. We protect users’ most personal data from malicious actors. And we enable remote productivity for organizations impacted by pandemics, wildfires, and other hazards.

Read More

Tags: phishing, secure web gateway, Menlo Security, By Light, DISA, federal cybersecurity, zero-days, drive-bys

Connect with us

Lists by Topic

see all

Recent Posts