Netskope Threat Labs publishes a monthly summary blog post of the top threats we are tracking on the Netskope platform. The purpose of this post is to provide strategic, actionable intelligence on active threats against enterprise users worldwide. Summary Attackers continue to attempt to fly under the radar by using cloud apps to deliver malware, […]
https://www.netskope.com/blog/netskope-threat-labs-stats-for-may-2023Summary A month ago, Google released eight new top level domains (TLD). Two of them (.zip and .mov) have been a cause for concern because they are similar to well known file extensions. Both .zip and .mov TLD are not new, as they have been available since 2014. The main concern is that anyone now […]
https://www.netskope.com/blog/zip-and-mov-top-level-domain-abuse-one-month-after-being-made-publicSummary The purpose of the Netskope Threat Labs News Roundup series is to provide enterprise security teams an actionable brief on the top cybersecurity news from around the world. The brief includes summaries and links to the top news items spanning cloud-enabled threats, malware, and ransomware. Top Stories Security incident on Twitter exposing tweets A […]
https://www.netskope.com/blog/threat-labs-news-roundup-may-2023Implementation is part of Transdev’s Cloud-First approach to better manage technological obsolescence Paris, June 6, 2023 – Netskope, a leader in Secure Access Service Edge (SASE), has today announced that it has been selected by Transdev, global leader in mobility that operates public transportation networks across 19 countries and five continents, including France, Spain, Australia, […]
https://www.netskope.com/press-releases/netskope-intelligent-sse-selected-by-transdev-to-secure-and-connect-its-hybrid-workforceSummary Large language models (LLMs), such as ChatGPT, have gained significant popularity for their ability to generate human-like conversations and assist users with various tasks. However, with their increasing use, concerns about potential vulnerabilities and security risks have emerged. One such concern is prompt injection attacks, where malicious actors attempt to manipulate the behavior of […]
https://www.netskope.com/blog/understanding-the-risks-of-prompt-injection-attacks-on-chatgpt-and-other-language-modelsBe the first to receive the Cloud Threats Memo directly in your inbox by subscribing here. Dark Pink (also known as Saaiwc Group) is an advanced threat actor that has been operating since mid-2021, mainly in the Asia-Pacific region and to a lesser extent in Europe, leveraging a range of sophisticated custom tools within a sophisticated […]
https://www.netskope.com/blog/cloud-threats-memo-threat-actors-continue-to-exploit-the-flexibility-of-github-for-malicious-purposesIn today’s rapidly digitizing world, the importance of data security has become paramount. With the increasing amount of sensitive information being shared and stored online, securing information from cyber attacks, information breaches, and theft has become a top priority for companies of all sizes. Data loss prevention (DLP) is a critical part of the Netskope […]
https://www.netskope.com/blog/ai-and-deep-learning-at-work-how-to-know-if-your-images-are-storing-sensitive-informationSummary A new critical zero-day vulnerability in the MOVEit Transfer software is being actively exploited by attackers to exfiltrate data from organizations. MOVEit Transfer is a managed file transfer (MFT) software, developed by Progress, designed to provide organizations a way to securely transfer files, which can be implemented on-premise or as a cloud SaaS platform. […]
https://www.netskope.com/blog/netskope-threat-coverage-moveit-transfer-zero-dayWe'd love to hear from you!