menlo security launches free security assessment toolkit to identify threats fuelling ransomware and credential theft

Menlo Security, a leader in cloud security, today announced that it has released the HEAT Security Assessment Toolkit designed to provide organisations with the ability to assess their levels of protection and current exposure to Highly Evasive Adaptive Threats (HEAT). Since July 2021, Menlo Security has seen a 224% increase in HEAT attacks. These attacks allow threat actors to deliver malicious content, including ransomware, to the endpoint by adapting to the targeted environment.

The HEAT Security Assessment Toolkit includes a HEAT Check test and a HEAT Analyzer that runs on the Splunk Platform. The HEAT Check enables customers to run a light penetration test to identify if they are susceptible to HEAT attacks. The Menlo Security HEAT Analyzer App for Splunk provides organisations with visibility around HEAT attacks that their network may have been exposed to over the past 30 days.

What is a HEAT Attack?
Highly Evasive Adaptive Threats (HEAT) are a class of cyber threats targeting web browsers as the attack vector and employs techniques to evade multiple layers of detection in current security stacks including firewalls, Secure Web Gateways, sandbox analysis, URL Reputation, and phishing detection. HEAT attacks are used as the initial access point to deliver malware or to compromise credentials, which in many cases leads to ransomware attacks.

“Ransomware, data and credential theft and other malware are on the rise. Couple this with the Log4J vulnerability, the Lazarus and Conti groups increased attacks targeting web browsers and the result is security teams worldwide facing a nearly non-stop barrage of incidents,” said John Grady, Senior Analyst, ESG. “Tools such as the HEAT Security Assessment can help ensure companies are aware of potential attacks before they have a chance to happen.”

HEAT Security Assessment Toolkit
The HEAT Security Assessment Toolkit provides a lightweight penetration and exposure assessment to help an organisation better understand their susceptibility to HEAT attacks.

“HEAT attacks are defined by the techniques that adversaries are increasingly using to evade detection by traditional security tools,” said Mark Guntrip, senior director of cybersecurity strategy, Menlo Security. “HEAT techniques can be used individually or in combination for any type of attack that targets the user, endpoint, or applications, including ransomware. The HEAT Security Assessment Toolkit is critical to helping companies ensure they are protected against these attacks.”

HEAT Check
The HEAT Check enables customers to run a light penetration test to find if they are susceptible to HEAT attacks. The assessment leverages several real-world HEAT attacks currently being used by threat actors, safely enabling the user to determine their exposure.

The HEAT Check does not deliver actual malicious content. It uses an industry standard EICAR file to test an organisation’s existing HEAT exposure. If the EICAR file is delivered without triggering an alert inside an organisation’s current security stack, then the security technology is not providing the requisite level of protection to defend against HEAT attacks.

Menlo Security HEAT Analyzer App for Splunk
To assess current HEAT exposure, the HEAT Analyzer, now available on Splunkbase, provides organisations with visibility around HEAT attacks that their network may have been exposed to over the past 30 days. This assessment tool analyses the company’s web traffic to determine the scale of HEAT exposure currently in their network and identifies the associated websites that were accessed.

The Menlo Security HEAT Analyzer provides organisations with a simple and effective way to perform a URL & category analysis of the visited websites. The HEAT Analyzer Report will highlight a customer’s exposure to HEAT attacks as well as the number of legacy URL reputation evasions, including click time mis-categorisations, specific categories serving up Legacy URL Reputation Evasion techniques (LUREs), as well as frequently seen domains.

The post Menlo Security launches free Security Assessment Toolkit to identify threats fuelling ransomware and credential theft appeared first on Need to See IT Newsdesk.

TECH NEWS RELATED

Researchers describe new kangaroo fossil from Papua New Guinea

Artist’s impression of Nombe Rockshelter megafauna, showing the Nombe kangaroo on the right. Credit: Artwork by Peter Schouten Australian paleontologists from Flinders University have described a new genus of giant fossil kangaroo from the mountains of central Papua New Guinea. The new description of the fossil kangaroo has found ...

View more: Researchers describe new kangaroo fossil from Papua New Guinea

Alibaba CEO extols positive role e-commerce giant’s technology can play in Chinese society in article for official magazine

Daniel Zhang Yong, chairman and chief executive of Alibaba Group Holding, has written an article in an official magazine published by the country’s cyberspace administration, promoting the positive role the Hangzhou-based company’s technology can play in Chinese society. The article was published in the latest edition of China Wangxin, ...

View more: Alibaba CEO extols positive role e-commerce giant’s technology can play in Chinese society in article for official magazine

Sparks of Hope as new Mario + Rabbids game gets a date

If you need some cheering up then hope is at hand, with Ubisoft’s Mario vs Rabbids collision Sparks of Hope dated for October. October 20, to be precise. The Switch exclusive marks the second time that the Mushroom Kingdom has collided with the wild rabbit-like things that originated in ...

View more: Sparks of Hope as new Mario + Rabbids game gets a date

iPad can still be your home hub in iPadOS 16, but there's a huge catch

Source: Apple What you need to know Apple has provided some clarity over using the iPad as a home hub in iPadOS 16. Code in the iOS 16 seemed to indicate that only the Apple TV and HomePod could be used on the new software. Apple says users who choose ...

View more: iPad can still be your home hub in iPadOS 16, but there's a huge catch

Tecno POVA 3 hits the Indian shelves with monstruous battery

After teasers and leaks, Tecno POVA 3 is finally hitting the shelves in the Indian market. The device was unleashed back in the last week and reached global markets before. and it’s a modest mid-range smartphone, but when it comes to the battery size it does not disappoint with a ...

View more: Tecno POVA 3 hits the Indian shelves with monstruous battery

B2B digitisation platform Sourcewiz raises Rs 20 crore in funding

Sourcewiz, a business-to-business (B2B) digitisation platform, has raised Rs 20 crore in a funding round led by Matrix Partners India.Angel investors including Aniket Deb, the cofounder of B2B packaging firm Bizongo; Wami Capital, the family office of Transworld Group, and Rohit Kapoor, global chief marketing officer of Oyo, also participated ...

View more: B2B digitisation platform Sourcewiz raises Rs 20 crore in funding

Enjoy slaying demons in style The Hinokami Chronicles are for interactive lovers of anime

Demon Slayer: Kimetsu no Yaiba – The Hinokami Chronicles Komsan Jandamit Anime lovers will enjoy Demon Slayer: Kimetsu No Yaiba – The Hinokami Chronicles because it allows players to relive memorable moments from the Demon Slayer: Kimetsu No Yaiba animation series. This game covers Season 1 (26 episodes) and ...

View more: Enjoy slaying demons in style The Hinokami Chronicles are for interactive lovers of anime

The price of Nothing Phone (1) might be its only asset

There’s been a lot of talk recently about the Nothing Phone (1) for all the wrong reasons. The newest entrant in the crowded mobile industry is a company headed by a smartphone veteran. The former head of OnePlus, Carl Pei, is back making smartphones and using creative ways to ...

View more: The price of Nothing Phone (1) might be its only asset

Praetura Ventures gets £5m from British Business Investments

How to Apply for the Lifeline Program and Save on Your Home Internet Service

China’s new antitrust rules could increase Big Tech scrutiny, adding hurdles to start-up acquisitions

Birdie: ‘operating system for care providers’ raises £25m

Apple Card doubles its cash back for a limited time

Moto G42 with Snapdragon 680 has launch details tipped

Here Are 5 Hacks to Set Up Your WFH Office Devices

Limiting global warming to 1.5 degrees Celsius would reduce risks to humans by up to 85%

Windows 10 KB5014666 update brings new printing features, bug fixes

Apple 'may have failed' to build this iPhone 15 feature

Apple iPhone 14 series first batch will have about 90 million units

Oppo Reno 8 series will reach in India on July 18

OTHER TECH NEWS

Top Car News Car News