Threat Intelligence from Arbor Net
- Lojack Becomes a Double-Agent

Executive Summary ASERT recently discovered Lojack agents containing malicious C2s. These hijacked agents pointed to suspected Fancy Bear (a.k.a. APT28, Pawn Storm) domains. The InfoSec community and the U.S. government have both attributed Fancy B…
- 1 May 18, 1:44pm - - Innaput Actors Utilize Remote Access Trojan Since 2016, Presumably Targeting Victim Files

Overview ASERT recently identified a campaign targeting commercial manufacturing in the US and potentially Europe in late 2017. The threat actors used phishing and downloader(s) to install a Remote Access Trojan (RAT) ASERT calls InnaputRAT on…
- 4 Apr 18, 8:02pm - - Panda Banker Zeros in on Japanese Targets

Key Findings A threat actor using the well-known banking malware Panda Banker (a.k.a Zeus Panda, PandaBot) has started targeting financial institutions in Japan. Based on our data and analysis this is the first time that we have seen Panda Banker inj…
- 27 Mar 18, 9:25pm -
- Donot Team Leverages New Modular Malware Framework in South Asia

Authors: Dennis Schwarz and Jill Sopko Special thanks to Richard Hummel and Hardik Modi for their contributions on this post. Key Findings ASERT discovered a new modular malware framework, we call yty, that focuses on file collection, screenshots, a…
- 8 Mar 18, 2:39pm - - NETSCOUT Arbor Confirms 1.7 Tbps DDoS Attack; The Terabit Attack Era Is Upon Us

Last week, after Akamai confirmed a 1.3Tbps DDoS attack against Github. I published a blog that looked at the last five years of reflection/amplification attack innovation. I hope that it provides a helpful backgrounder on how we got here, to the ter…
- 5 Mar 18, 5:34pm - - 1 Terabit DDoS Attacks Become a Reality; Reflecting on Five Years of Reflections

Special thanks to Hardik Modi, Steve Siadak and Roland Dobbins for their contributions on this post. Reflection amplification is a technique that allows cyber attackers to both magnify the amount of malicious traffic they can generate, and obfuscate…
- 1 Mar 18, 7:24pm - - memcached Reflection/Amplification Description and DDoS Attack Mitigation Recommendations

ASERT Threat Summary: memcached Reflection/Amplification Description and DDoS Attack Mitigation Recommendations Date/Time: 27022018 2325UTC Title/Number: memcached Reflection/Amplification Description and DDoS Attack Mitigation Recommendations – Fe…
- 27 Feb 18, 5:08pm - - Musical Chairs Playing Tetris

February 20, 2018: This blog has been amended since it was originally published on February 15, 2018. This version removes the association with the APT group responsible for the Night Dragon campaign that we had incorrectly made. We thank the researc…
- 15 Feb 18, 9:23pm - - The ARC of Satori

Authors: Pete Arzamendi, Matt Bing, and Kirk Soluk. Satori, the heir-apparent to the infamous IOT malware Mirai, was discovered by researchers in December 2017. The word “satori” means “enlightenment” or “understanding” in Japanese, but t…
- 19 Jan 18, 2:03am - - MedusaHTTP DDoS Slithers Back into the Spotlight

Executive Summary MedusaHTTP is a HTTP-based DDoS botnet written in .NET, that surfaced in early 2017. MedusaHTTP is based off of MedusaIRC which leveraged IRC for its command and control communications instead of HTTP. MedusaIRC botnet has been adve…
- 18 Dec 17, 3:00pm -
Cyber Crimes Info by FBI
- New Reward in Boston Chinatown Massacre Case
The FBI and Boston Police are hoping a $30,000 reward will shed light on the whereabouts of a suspect in the execution-style murders of five men 30 years ago.
- 12 days ago 12 Jan 21, 11:00am - - Stopping Human Trafficking
The recent disruption of a Washington, D.C.-area trafficking ring shows the FBI's commitment to stopping human traffickers—during National Slavery and Human Trafficking Prevention Month and all year long.
- 13 days ago 11 Jan 21, 6:00am - - Hacker Who Disrupted PPE Shipments Sentenced
A disgruntled former employee of a medical equipment packaging company was sentenced for hacking into the company’s computer systems and disrupting the shipment of personal protective equipment during the COVID-19 pandemic.
- 18 days ago 6 Jan 21, 6:00am -
- Innocent Images Program Marks 25 Years
When a 1990s kidnapping case led FBI agents to individuals who were using the internet to share images of child sexual abuse and lure children into harm, it launched a revolution in how the FBI investigates these crimes.
- 27 days ago 28 Dec 20, 8:00am - - New Charges in Pan Am Flight 103 Bombing
Thirty-two years after the terrorist bombing of a Pan Am jet over Scotland killed 270 people, including 190 Americans, charges have been filed against a former Libyan intelligence operative for his alleged role in building the bomb.
- 34 days ago 21 Dec 20, 11:00am - - Iris Biometric Added to NGI
The Next Generation Identification Iris Service gives the FBI and partner agencies the ability to capture, catalog, and make rapid comparisons of iris images with a high rate of accuracy.
- 44 days ago 11 Dec 20, 10:00am - - Five Things to Know About NIBRS
Next year, the National Incident-Based Reporting System will become the national crime data collection program. The result will be more robust and complete data for law enforcement, researchers, and the public.
- 60 days ago 25 Nov 20, 7:40am - - Sextortion
The case of a Florida man who was sentenced to 60 years in prison for victimizing a teenager online highlights the growing crime of sextortion and its devastating real-life consequences.
- 75 days ago 10 Nov 20, 7:00am - - New Top Ten Fugitive
Jose Rodolfo Villarreal-Hernandez, wanted for allegedly directing individuals to track and murder a man in Southlake, Texas, has been added to the FBI’s Ten Most Wanted Fugitives list. A reward of up to $1 million is available for information leadi…
- 13 Oct 20, 6:37am - - Train Derailment Mystery
Twenty-five years after the derailment of Amtrak's Sunset Limited passenger train in Arizona killed the conductor and injured dozens of passengers, investigators are still trying to find answers—and justice for the victims.
- 9 Oct 20, 6:00am - - Operation DisrupTor
A Joint Criminal Opioid and Darknet Enforcement (JCODE) investigation in Los Angeles exemplifies the teamwork and tenacity required to uncover the people behind drug operations that run through a network prized for its encryption and anonymity.
- 22 Sep 20, 8:30am - - Iran at Center of Cyber Crime Charges in Three Cases
Criminal charges announced against multiple alleged hackers in Iran show the breadth of the cyber threat emanating from that country and the FBI and partner agency efforts to neutralize it and hold the individuals accountable.
- 18 Sep 20, 1:01pm - - FBI Checklist Aids Searches for Missing Autistic Children
After a 6-year-old boy with autism went missing in North Carolina in 2018, the FBI’s Child Abduction Rapid Deployment Team developed a one-page questionnaire to help investigators be better prepared in similar cases.
- 18 Sep 20, 9:00am - - FBI Strategy Addresses Evolving Cyber Threat
FBI Director Christopher Wray announced the Bureau’s new strategy for countering cyber threats in remarks at the virtual CISA National Cybersecurity Summit.
- 16 Sep 20, 9:08am - - Director’s Community Leadership Awards
Although the annual in-person DCLA ceremony at FBI Headquarters was canceled this year, we honor and celebrate the dedication and service of each of our award recipients, who are all working to make their communities safer and stronger.
- 16 Sep 20, 7:00am -
Financial Crimes Task Force (FCTF)
- FATF Guidance for a Risk-Based Approach for the Accounting Profession
This guidance highlights the need for a sound assessment of the money laundering and terrorist financing risks that accountants face so that the policies, procedures and ongoing customer due diligence measures mitigate these risks. The risk-based app…
- 26 Jun 19, 12:46pm - - FATF Guidance for a Risk-Based Approach for Trust and Company Service Providers
This guidance aims to support the implementation of the risk-based approach to trust and company service providers, taking into account national money laundering and terrorist financing risk assessments and AML/CFT legal and regulatory frameworks.
- 26 Jun 19, 11:10am - - Guidance for a Risk-Based Approach to Virtual Assets and Virtual Asset Service Providers
This guidance follows revisions to the FATF Recommendations in response to the increasing use of virtual assets for money laundering and terrorist financing. The FATF strengthened its standards to clarify the application of anti-money laundering and…
- 21 Jun 19, 5:45pm - - Public Statement on Virtual Assets and Related Providers
FATF is setting out more detailed implementation requirements for effective regulation and supervision/monitoring of virtual asset services providers, in order to adequately mitigate the ML/TF risks associated with virtual asset activities. At its Pl…
- 21 Jun 19, 11:00am - - Risk-based Approach Guidance for the Life Insurance Sector
The Guidance aims to support the design and implementation of the RBA for the life insurance sector, taking into account national ML/TF risk assessments and legal and regulatory frameworks to combat money laundering and terrorist financing.
- 25 Oct 18, 4:52pm - - Public Consultation on the Draft Risk-Based Approach Guidance for the Life Insurance Sector
The FATF is developing guidance to assist countries, competent authorities, insurers and insurance intermediaries in the application of a risk-based approach (RBA) to AML/CFT in the Life Insurance Sector. FATF is consulting private-sector stakeholder…
- 6 Jul 18, 5:00pm - - Public Consultation on the Draft Risk-Based Approach Guidance for the Securities Sector
The FATF is developing guidance to assist countries, competent authorities and the securities sector in the application of a risk-based approach (RBA) to AML/CFT in the Securities Sector. FATF is consulting private-sector stakeholders on the text of…
- 6 Jul 18, 4:54pm -
Federal Trade Commision on Identity Theft
- What to know about the second round of Economic Impact Payment (EIP) checks and cards
The US Department of the Treasury and the IRS are working hard to get a second round of Economic Impact Payments (EIP) to people. You might have already gotten your payment direct deposited into your bank account. That started on December 29th. You m…
- 2 days ago 22 Jan 21, 8:18pm - - Cracking down on ticket bots that leave you out in the cold
For most of us, it’s been a long time since we’ve been able to attend a live event. Think back, if you can, to the last time you tried to buy tickets online to go to a concert, a game, or a play. Were you shut out because tickets sold out before…
- 2 days ago 22 Jan 21, 4:00pm - - Get ready for NCPW 2021!
March is right around the corner, and you know what that means…it’s almost time for National Consumer Protection Week (NCPW)! This year, NCPW is February 28 – March 6, 2021. So now’s the time to jump into planning.
- 3 days ago 21 Jan 21, 1:55pm -
- Coronavirus relief scam impersonates Joe Simons from the Federal Trade Commission
Scammers are at it again, pretending to be from a government agency to rip people off. Here’s what you need to know about the latest coronavirus relief fund scam.
- 9 days ago 15 Jan 21, 3:00pm - - Does your health app protect your sensitive info?
New health apps are popping up every day, promising to help you track your health conditions, count your calories, manage your medications, or predict your ovulation. These apps often ask for some of your most sensitive personal information, like you…
- 11 days ago 13 Jan 21, 7:50pm - - Target for new COVID scam: Small business owners- 11 days ago 13 Jan 21, 7:41pm -
- Stimulus payments for people, not nursing homes
If you, or someone you care about, lives in an assisted living facility or nursing home, read on. Because the bill funding the second round of Economic Impact Payments (EIPs) has now been signed into law.
- 20 days ago 4 Jan 21, 2:44pm - - Wrapping up 2020 with more car wrap scams
We just heard from more companies that scammers are using their names to trick people into a car wrap scam. This time, scammers are saying they’re Marlboro or Purell (but they’re not really).
- 26 days ago 29 Dec 20, 2:30pm - - If you have federal student loans, read this
Several months ago, we told you that the U.S. Department of Education announced some flexibility to federal student loan borrowers. Understanding these options can help you make more informed decisions about paying your bills and prioritizing your de…
- 26 days ago 29 Dec 20, 2:00pm - - More money from the government?
Congress has just passed another bill to help the people whose finances are taking a beating from the pandemic. Once again, some of us will be getting money by check or direct deposit. The timing and details are still TBA, but here’s what we know:
- 33 days ago 22 Dec 20, 2:58pm -
Security Technical Implementation Guides
- For Attackers, Home is Where the Hideout Is
Remember the good ol’ days of playing hide-and-seek? It’s hard to forget the rush of finding the perfect hiding place. I remember crouching into a tiny ball behind the clothes hanging in my mother’s closet, or standing frozen like a statue behi…
- 5 days ago 19 Jan 21, 11:04pm - - QR Code Security: What You Need to Know Today
QR codes are very common today, enough so that attackers are discovering ways of using them for profit. How can QR codes be used this way, and what can you do to boost QR code security and protect against these scams? What Are QR Codes Used For? QR…
- 5 days ago 19 Jan 21, 2:00pm - - Managing Cybersecurity Costs: Bake These Ingredients Into Your Annual Budget
As businesses across all industries evolve, once discretionary expenses become operating costs. Insurance coverage, for example, is pretty much ‘a must’ across many industries. The latest may be cybersecurity costs, because protecting your most…
- 9 days ago 15 Jan 21, 8:00pm -
- Hybrid Cloud Adoption Brings Security on the Go
Hybrid cloud environments are a common sight in today’s digital world. IBM’s Assembling Your Cloud Orchestra report found 85% of organizations already utilize a hybrid cloud and 98% anticipate having one in place within three years. This type of…
- 9 days ago 15 Jan 21, 7:00pm - - Misconfigurations: A Hidden but Preventable Threat to Cloud Data
Working in the cloud has many advantages. But to handle your information safely, you should know how to defend against the common problem of misconfigurations leaving cloud data open to thieves. What are the Benefits of Cloud Computing? Many groups…
- 9 days ago 15 Jan 21, 6:00pm - - 5 Cybersecurity Best Practices For Planning Ahead
Putting best practices in place is the most efficient way to combat cybersecurity threats. But that’s easier said than done, as there are a lot of forces working against our best efforts. The talent shortage looms the largest; there simply aren’t…
- 10 days ago 14 Jan 21, 10:00pm - - Preparing a Client Environment for Threat Management
A key part of making any threat management program successful is ensuring it maps properly to the client’s needs. In the past, this has been challenging for many groups providing threat management to their internal teams. The challenge has largely…
- 10 days ago 14 Jan 21, 9:30pm - - Social Engineering And Social Media: How to Stop Oversharing
You’ve done your due diligence, practice good security hygiene and have the best security tools available. Now, your security posture is strong. But, your plan is only as good as your employees, and they may be letting you down when it comes to bei…
- 11 days ago 13 Jan 21, 1:00pm - - Peaks and Valleys: The Mental Health Side of Cybersecurity Risk Management
There is one risk cybersecurity experts often overlook: burnout. We can build on threat detection and incident response capabilities and use cybersecurity risk management frameworks, such as NIST CSF, to improve our overall risk posture all we want w…
- 12 days ago 12 Jan 21, 2:00pm - - What is STRIDE and How Does It Anticipate Cyberattacks?
STRIDE threat modeling is an important tool in a security expert’s arsenal. Threat modeling provides security teams with a practical framework for dealing with a threat. For example, the STRIDE model offers a proven methodology of next steps. It ca…
- 13 days ago 11 Jan 21, 11:00pm -
Security Focus Vulnerabilities
The TOR Blog
- New release candidate: Tor 0.4.5.4-rc

New release candidate: Tor 0.4.5.4-rc nickmJanuary 22, 2021 There's a new release candidate available for download. If you build Tor from source, you can download the source code for 0.4.5.4-rc from the download p…
- 2 days ago 22 Jan 21, 5:03pm - - New Release: Tor Browser 10.5a7

New Release: Tor Browser 10.5a7 sysrqbJanuary 19, 2021 Tor Browser 10.5a7 is now available from the Tor Browser Alpha download page and also from our distribution directory.Note: This is an alpha release, an expe…
- 5 days ago 20 Jan 21, 4:12am - - The State of IPv6 support on the Tor network

The State of IPv6 support on the Tor networkGabaJanuary 14, 2021 In our last article, published in RIPE's website, we described the work that happened in 2020 related to giving IPv6 support to the Tor network.Tor 0.4.5.1-alpha is the…
- 10 days ago 14 Jan 21, 2:37pm -
The TOR Blog Comments
- New release candidate: Tor 0.4.5.4-rc

New release candidate: Tor 0.4.5.4-rc nickmJanuary 22, 2021 There's a new release candidate available for download. If you build Tor from source, you can download the source code for 0.4.5.4-rc from the download p…
- 2 days ago 22 Jan 21, 5:03pm - - New Release: Tor Browser 10.5a7

New Release: Tor Browser 10.5a7 sysrqbJanuary 19, 2021 Tor Browser 10.5a7 is now available from the Tor Browser Alpha download page and also from our distribution directory.Note: This is an alpha release, an expe…
- 5 days ago 20 Jan 21, 4:12am - - The State of IPv6 support on the Tor network

The State of IPv6 support on the Tor networkGabaJanuary 14, 2021 In our last article, published in RIPE's website, we described the work that happened in 2020 related to giving IPv6 support to the Tor network.Tor 0.4.5.1-alpha is the…
- 10 days ago 14 Jan 21, 2:37pm -
Cyber Punk
- Automated Dynamic Application Penetration Testing: ADAPT

ADAPT is a tool that performs Automated Dynamic Application Penetration Testing for web applications. It is designed to increase accuracy, speed, and confidence in penetration testing efforts....
- 5 Mar 19, 9:51pm - - Scalable Fuzzing Infrastructure: ClusterFuzz

ClusterFuzz is a scalable fuzzing infrastructure which finds security and stability issues in software. It is used by Google for fuzzing the Chrome Browser, and serves as the fuzzing backend for...
- 21 Feb 19, 3:51am - - Target Reconnaissance Framework: Pown Recon

Pown Recon is a target reconnaissance framework powered by graph theory. The benefit of using graph theory instead of flat table representation is that it is easier to find the relationships...
- 21 Feb 19, 3:32am - - Post-Exploitation Framework for Linux Written in Bash: Orc

Orc is a simple post-exploitation written in bash. I wrote this because I myself needed a more featureful post-exploitation toolkit for Linux. It’s part of a larger bundle of scripts and...
- 21 Feb 19, 3:15am - - Securely and Anonymously Send and Receive Files: OnionShare

OnionShare is an open source tool for securely and anonymously sending and receiving files using Tor onion services. It works by starting a web server directly on your computer and making it...
- 20 Feb 19, 4:28pm - - Flexible and Powerful Reverse Proxy: Modlishka

Modlishka is a flexible and powerful reverse proxy, that will take your phishing campaigns to the next level.It was realeased with an aim to:help penetration testers to carry out an effective...
- 22 Jan 19, 3:47am - - A Framework for Secure and Scalable Network Traffic Analysis: Netcap

The Netcap (NETwork CAPture) framework efficiently converts a stream of network packets into highly accessible type-safe structured data that represent specific protocols or custom abstractions....
- 22 Jan 19, 3:21am - - Phishing Campaign Toolkit: King Phisher

King Phisher is a tool for testing and promoting user awareness by simulating real world phishing attacks. It features an easy to use, yet very flexible architecture allowing full control over...
- 20 Dec 18, 3:50pm - - Framework for Rogue Wi-Fi Access Point Attack: WiFi-Pumpkin

The WiFi-Pumpkin is a rogue AP framework to easily create these fake networks, all while forwarding legitimate traffic to and from the unsuspecting target. It comes stuffed with features,...
- 12 Dec 18, 5:20am - - A Post-Exploitation Scanning/Mapping Tool: Scavenger

SCAVENGER is a multi-threaded post-exploitation scanning tool for mapping systems and finding “interesting” and most frequently used files, folders and services. Once credentials are...
- 10 Dec 18, 1:26am - - Kernel-Mode Rootkit Hunter: Tyton

Loadable kernel modules, LKMs for short, are an integral companion to the Linux kernel. Typically, LKMs are used to add support for new hardware (as device drivers) or file systems or add...
- 3 Dec 18, 11:15pm - - Tools for capturing and analyzing keyboard input paired with microphone capture

The main goal is to exploit the sound produced by pressing keyboard keys as a side channel in order to guess the content of the text being typed. To achieve this, the algorithm takes as input a...
- 3 Dec 18, 10:59pm -
Bot24
- Todays List of Manhattan Price Reductions & Back on the Market Listings

Today's Price Reductions:Address Apt Size R/B/B Price Monthly Address Apt Size R/B/B Price Monthly 2150 BroadwayLast Price: $12,750,000 Price Drop: ($500,000) [7/26/2018] 8-BC 6BD 10/6/5.5 $12,250,000 $7,400 305 East 51st StreetLast Price…
- 2 Oct 18, 11:30pm - - Todays List of Manhattan Price Reductions & Back on the Market Listings

Today's Price Reductions:Address Apt Size R/B/B Price Monthly 1185 Park AvenueLast Price: $21,950,000 Price Drop: ($2,450,000) [5/11/2018] PH-16G 5BD 11/5/6 $19,500,000 $7,999 211 Central Park WestLast Price: $19,995,000 Price D…
- 1 Oct 18, 10:48pm - - Todays List of Manhattan Price Reductions & Back on the Market Listings

Today's Price Reductions:Address Apt Size R/B/B Price Monthly 151 East 78th StreetLast Price: $13,500,000 Price Drop: ($805,000) [6/18/2018] 4 4BD 8/4/5 $12,695,000 $11,496 154 Attorney StreetLast Price: $6,500,000 Price Drop: (…
- 29 Sep 18, 5:20pm -
- Buyers Market and Daily Price Reductions

As many sources have reported prices have risen significantly throughout the country for a number of years however due to the Federal Reserves continuous raising of rates, overbuilding and more properties being listed, inventory is growing unabated a…
- 28 Sep 18, 9:10pm - - Weekly mortgage applications stall along with rates and home sales

Rising interest rates and rising home prices are cutting into mortgage demand, as fewer consumers have the incentive to refinance or buy a home.Total mortgage application volume slipped 0.4 percent last week from the previous week, according to the M…
- 4 Oct 17, 4:59pm - - Weekly mortgage applications fall as interest rates rise to highest level in a month

- Mortgage application volume fell 0.5 percent last week from the previous week, according to the Mortgage Bankers Association.- Volume now stands 21.5 percent lower than a year ago.- Applications to refinance a home loan fell 4 percent for t…
- 27 Sep 17, 12:46pm - - Delinquency rates for commercial and multifamily mortgage loans

WASHINGTON, D.C. (September 26, 2017) - Delinquency rates for commercial and multifamily mortgage loans were relatively flat in the second quarter of 2017, according to the Mortgage Bankers Association's (MBA) Commercial/Multifamily Delinquency Repor…
- 26 Sep 17, 12:43pm - - An Art Deco Gem of A 2 Bedroom Apartment for Rent in the Financial District with a Mind Boggling Number of Amenities- $5,169

DescriptionSUN DRENCHED/GORGEOUS/LUXURIOUS FLEX 2 BEDROOM at NO FEE WHICH INCLUDES FOYER/ HOME OFFICE IN ONE OF THE WORLDS MOST ICONIC SKYSCRAPERS! IN FACT THIS TOWER USED TO BE ONE OF CITY'S TALLEST BUILDINGS AT ONE TIME!An art deco gem re-imagined…
- 22 Sep 17, 3:28pm - - Total mortgage applications fell 9.7 percent last week

It was a menacing mix for mortgages last week. Back-to-back major hurricanes, a holiday weekend and higher interest rates combined to bring a 9.7 percent drop in total mortgage application volume last week from the previous week.The Mortgage Bankers…
- 20 Sep 17, 11:11am - - Beautiful No Fee 1 Bedroom in Doorman Bldg at Lincoln Square for $3,290 a Month

DescriptionOne Month Free!Beautiful renovated 1BR/1BA Spacious living room with hardwood floors, all stainless steel appliances. Good closets throughout! Significantly cheaper than the average Lincoln Center 1 Bedroom.Located in the heart of Lincol…
- 20 Sep 17, 10:54am - - Gorgeous One Bedroom in Full Service Bldg at Midtown West for $3000 a Month

DescriptionTrue One Bedroom in Gorgeous full service at No Fee & One Month Free!!Located in Midtown West, great sized apartment within walking distance to Herald Square, Times Square and many other central hubs in Manhattan. Pet friendly building off…
- 20 Sep 17, 10:45am - - Blending Old with New, Magnificent 2 Bedroom $1,289SF Residence for Sale in Prospering Hells Kitchen- $1,595,000

DESCRIPTIONHere is your chance to own a condo in a New Development and in an area that is one of the fastest growing neighborhoods throughout ManhattanEnter your new home through a gracious foyer leading to a great room with separate windowed eat-in…
- 14 Sep 17, 9:20pm - - Mortgage applications leap nearly 10% on lowest rates in almost a year

Homebuyers are clamoring to capitalize on the lowest interest rates in almost a year, driving mortgage application volume 9.9 percent higher.The Mortgage Bankers Association's weekly application index is still 19 percent lower than the same week last…
- 13 Sep 17, 2:02pm - - Grand Townhouse For Sale in Manhattans Ultra-Fashionable/Trendy Chelsea Neighborhood

Why buy an apartment, when you can own a duplex in a grand townhouse? This townhouse maisonette, with a private entrance, is generously spaced with each floor measuring 1,675 square feet and a triple-parlor ceiling soaring fourteen feet. The townhous…
- 12 Sep 17, 11:01pm - - August New Home Purchase Mortgage Applications Increased 6.8 Percent Year over Year

WASHINGTON, D.C. (September 12, 2017) - The Mortgage Bankers Association (MBA) Builder Application Survey (BAS) data for August 2017 shows mortgage applications for new home purchases increased 6.8 percent compared to August 2016. Compared to July 20…
- 12 Sep 17, 1:52pm - - Sunny, West-facing 2 Bedroom Condo for Sale in Lincoln Center

New to Market! Mint 2 Bed, 2 Bath + Dining Room in a Full-Service, New Condominium Conversion Right Next to Central Park.This Sunny, West-facing home features Treetop and Partial Lincoln Center Views through New Double-Paned Oversize Windows, Hardwoo…
- 12 Sep 17, 1:49pm - - 2 Bedroom Apartment Available in Gramercy at 23rd Street and Park Ave - $4395 a Month!

DescriptionLocated between East 19th street and East 20th Street in the historic Flat Iron District, this luxurious apartment is around the corner from beautiful Gramercy Park and only a few blocks from always happening Union Square.Convenient to the…
- 8 Sep 17, 5:55pm - - First Avenue & 91st Street New York, NY 10128 · 26 Units · Multifamily For Sale

DescriptionEXCLUSIVE YORKVILLE1762-1764 FIRST AVENUE, NEW YORK, NY 10128FIRST SALE IN OVER 30 YEARSTwo 5-Story Residential Buildings with 17,490 SF. 50 Feet ofFrontage on the Avenue between 91st & 92nd Streets.70% Decontrolled: 26 Apartments & 4 Stor…
- 7 Sep 17, 2:25pm - - Commercial Property for Sale at 417 Park Ave -30 Units - Multifamily For Sale

DescriptionTotal Units = 30 Incredible opportunity for sale or lease - corner retail condo with over 70 feet of Park Avenue frontage, and an additional 30 along 55th St, in a boutique residential building in the Plaza District. Currently built out as…
- 7 Sep 17, 2:12pm - - No Fee Large Upper East Side Apartment for Rent in Full Service Building- $2,995 a Month

DescriptionOne Month Free apartment in an Elegant Full Service high rise with Breathtaking PanoramicViews. This Large Convertible two bedroom apartment comes equipped with shiny hardwood floors, a fully equipped Granite pass-thru kitchen with stainle…
- 7 Sep 17, 11:11am - - Mortgage Applications Increase in Latest MBA Weekly Survey

WASHINGTON, D.C. (September 6, 2017) - Mortgage applications increased 3.3 percent from one week earlier, according to data from the Mortgage Bankers Association's (MBA) Weekly Mortgage Applications Survey for the week ending September 1, 2017.The Ma…
- 6 Sep 17, 11:20am - - West 120th Street 2 Family Townhouse Close to Ivy League Columbia University for Sale- $4,350,000

Unit DescriptionCelebrate 363 West 120th Street, an amazingly renovated West Harlem townhouse with its stoop in view of Morningside Park. Live on one of Harlem's most desired townhouse blocks between Manhattan and Morningside Avenues in this tasteful…
- 5 Sep 17, 11:37am - - Elegant One Bedroom Gramercy Park Apartment for Rent- $3,557 a Month

DescriptionBeautiful Renovated 1 Bedroom in Upscale Gramercy in a Doorman building with elevator and laundry at East 21st Street!This home boasts:Stainless steel appliancesIn-unit washer/dryerCaesarstone quartz counter-topsKahrs engineered hardwood f…
- 5 Sep 17, 9:56am - - $57,500,000, 9000 Square Foot Midtown East Masterful Condominium for Sale

Unit DescriptionCrowning the most luxurious condominium in Midtown is an architectural masterpiece designed by the revolutionary Charles Gwathmey; a 9,000-square-foot duplex rivaled by no other penthouse in Manhattan at One Beacon Court #PH51/52W 151…
- 4 Sep 17, 12:42am - - The Biggest US Cities where Rents Are Plunging

An inconvenient math for housing is beginning to dog Chicago: The third largest city in the US has been losing population for years. Not huge numbers, but it adds up… In 2016, according to the Census estimate, the population dropped by about 9,000…
- 3 Sep 17, 11:26pm -
Talos by Cisco
- How Adversaries Use Politics for Compromise
Cisco Talos recently discovered several malware distribution campaigns where the adversaries were utilizing the names and likenesses of several prominent political figures.
- 5 Nov 19, 3:59pm - - C2 With It All: From Ransomware To Carding
Cisco Talos recently discovered a new server hosting a large stockpile of malicious files. Our analysis of these files shows that these attackers were able to obtain a deep...
- 4 Nov 19, 4:03pm - - Threat Roundup for October 25 to November 1

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Oct 25 and Nov 1. As...
- 1 Nov 19, 5:31pm -
- The commoditization of mobile espionage software
Mobile stalkerware has all sorts of wide-ranging consequences. The creators of these types of apps can track user's locations, see their social media usage and more. And they certainly open...
- 30 Oct 19, 4:06pm - - Threat Roundup for October 18 to October 25

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Oct 18 and Oct 25. As...
- 25 Oct 19, 4:32pm - - Gustuff return, new features for victims
The Gustuff banking trojan is back with new features, months after initially appearing targeting financial institutions in Australia. Cisco Talos first reported on Gustuff in April. Soon after, the actors behind...
- 21 Oct 19, 2:48pm - - Threat Roundup for October 11 to October 18

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Oct 11 and Oct 18. As...
- 18 Oct 19, 4:44pm - - Checkrain fake iOS jailbreak leads to click fraud
Attackers are capitalizing on the recent discovery of a new vulnerability that exists across legacy iOS hardware. Cisco Talos recently discovered a malicious actor using a fake website that claims...
- 15 Oct 19, 8:33am - - Threat Roundup for October 4 to October 11

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Oct 4 and Oct 11. As...
- 11 Oct 19, 3:45pm - - New IDA Pro plugin provides TileGX support
Cisco Talos has a new plugin available for IDA Pro that provides a new disassembler for TileGX binaries. This tool should assist researchers in reverse-engineering threats in IDA Pro that...
- 11 Oct 19, 9:26am -
More Links on Threat Intelligence
Tweets for Threat Intel