A recent blog by Elastic Security Labs details GHOSTENGINE, a crypto miner that leverages an intrusion set (HIDDENSHOVEL) to disable endpoint security solutions (EDRs) on a victim host. While crypto miners may not pose a grave threat to an enterprise, the usage of anti-EDR functions is dangerous and likely to increase in prevalence. In today's cybersecurity landscape, confidence and reliance upon an enterprise endpoint solution are commonplace; this further increases when leveraging XDR capabilities to add network detection functions. While EDR is a critical component of any cybersecurity framework, Network Detection and Response (NDR) solutions play an equally important role as new vulnerabilities emerge.

The post EDR-Killing Malware and the Need for Network Detection appeared first on Security Boulevard.

You click on a cool-looking video on YouTube. It looks legit, with a well-known spokesperson and everything. It may be worth checking out. However, it just so happens it lists a linkto a malicious landing page. 

The post YouTube, The Backdrop Of A Scammer’s Play | Avast appeared first on Security Boulevard.