Category: Articles

Like the Pandemic’s Asymptomatic, Dormant Ransomware Poses Security Challenges

Over the past year, the global pandemic has taught the cybersecurity industry a lot about the spread of infection–how to control it, how to mitigate against it, and (sometimes) how to detect it. But more often than not, in both humans and cybersecurity, detection only happens because of indicators.  What remains a mystery and consequently […]

Staring at the Sun: Thoughts on UNC2452, SUNBURST, SolarWinds and Road Ahead

Introduction: Cyber- Photokeratitis Like many who have worked in the threat research & intelligence, forensics, and incident response space some time, when I became aware of FireEye’s public breach disclosure earlier this month (09 DEC 2020), it gave me pause. FireEye is without question a global leader in the development and acquisition of technology, services, […]

Who’s Impacted by TA505 and Why It Matters

While threat actors like Cozy Bear and Fancy Bear get a lot of attention, there is another sophisticated crime actor that companies need to be watching out for. The group is called TA505 and it is believed to be a Russian criminal operation. However, there may be more to this group’s activities than purely financial […]

Ransomware crime group known as UNC1878

On the Trail of UNC1878

Since October 28th, Prevailion has been investigating current and potential future victims of the ransomware crime group known as UNC1878. While our investigation is still underway, we have so far identified hundreds of organizations worldwide that show compromise activity by this threat actor, and which may be in the early- to mid-stages of a Ryuk […]

Gartner Cool Vendor 2020

Prevailion Recognized as a 2020 Gartner “Cool Vendor”

We are pleased to announce that Prevailion has been named a Gartner Cool Vendor in the 2020 Cool Vendors in Security Operations and Threat Intelligence report. In the October 13th report, Gartner points out that “Organizations struggle to mitigate vulnerabilities because of the inability to prioritize them due to a lack of context about the […]

Prevailion Increases Malware Coverage by 45% featured image - AAA

Prevailion Increases Malware Coverage by 45%

Prevailion’s threat intelligence team has substantially increased our monitoring of malicious cyber activity over the last month. The APEX™ Platform now tracks over 205 malware families, marking a 45% increase since the start of September. We have also increased our monitoring of malicious beacons by 20%, with more than 32 billion C2 communications collected. This […]

Copyright 2021 Prevailion, Inc. All rights reserved.    

Disclaimer: Gartner “Cool Vendors in Security Operations and Threat Intelligence,” Mitchell Schneider, Ruggero Contu, John Watts, Craig Lawson, October 13, 2020. GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved. Gartner Disclaimer: The GARTNER COOL VENDOR badge is a trademark and service mark of Gartner, Inc. and/or its affiliates and is used herein with permission. All rights reserved. Gartner does not endorse any vendor, product or service depicted in its research publications and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s Research & Advisory organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.