{"id":49088,"date":"2022-08-26T08:01:58","date_gmt":"2022-08-26T11:01:58","guid":{"rendered":"https:\/\/abes.org.br\/?p=49088"},"modified":"2022-08-16T07:16:51","modified_gmt":"2022-08-16T10:16:51","slug":"clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho","status":"publish","type":"post","link":"https:\/\/abes.org.br\/en\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\/","title":{"rendered":"CLM and Picus analyze the top five cyberthreats that emerged in July"},"content":{"rendered":"

New groups and families of malware require agility in response and highlight the need to simulate violations in protection systems<\/em><\/p>\n

\"\"<\/p>\n

In another hectic month for CISOS, the report by Picus Security, a pioneer in Breach and Attack Simulation (BAS \u2013 Breach and Attack Simulation), shows the emergence of cyberattack campaigns triggered by new groups of hackers and malware families. Among the most significant are:\u00a0Maui Ransomware<\/strong>, which uses a hybrid encryption method involving AES, RSA encryption and XOR encoding which increases its impact;\u00a0Green Stone Malware Dropper<\/strong>, which sends Open XML documents containing a malicious macro, which unpacks and runs an executable, with spy features, in a temporary directory, which avoids detection by most antiviruses.<\/u><\/u>\u00a0<\/u><\/u><\/p>\n

O\u00a0HavanaCrypt Ransomware<\/strong>\u00a0was another one that appeared in July. It masquerades as a legitimate Google Software application and uses an IP address belonging to a Microsoft hosting service as its C2 server to avoid detection. Another attack was that of a Ransomware that uses the double extortion method: it steals confidential data, encrypts it and releases a ransom note with a chat address on the Tor Browser, the most used to access the DeepWeb (and therefore , the DarkWeb). already the\u00a0H0lyGh0st Ransomware<\/strong>, although it has been active since 2021, the group now strikes back with a more persistent and improved variant of this malware, BTLC.exe.<\/u><\/u>\u00a0<\/u><\/u><\/p>\n

\u201cWithout cyber resilience, companies, government entities and other organizations are doomed to become the next victims of ransomware and countless other cyberattacks, as we have seen around the world\u201d, warns Tom Camargo, VP of CLM, Latin American distributor value-added focused on information security, data protection, infrastructure for data centers and cloud.<\/u><\/u>\u00a0<\/u><\/u><\/p>\n

For the CLM executive, which distributes Picus technology in Latin America, in this extremely dynamic scenario and marked by the emergence of new groups of cybercriminals, acting with new forms of attack, the agility in the response proves to be increasingly essential to avoid the data hijacking and other evils caused by a growing number of cyber threats. \u201cThe support of technologies that quickly simulate danger makes it possible to test the effectiveness of security controls. O\u00a0Picus Labs<\/a>\u00a0included simulations of the various attacks registered in July in the Picus Threat Library, updating the Picus Complete Security Control Validation platform in real time\u201d.<\/u><\/u>\u00a0<\/u><\/u><\/p>\n

See details of the top five attacks in this period below:<\/u><\/u>\u00a0<\/u><\/u><\/p>\n

1.\u00a0\u00a0\u00a0\u00a0\u00a0Maui Ransomware<\/strong><\/u><\/u><\/p>\n

The Cybersecurity and Infrastructure Security Agency (CISA), the US Treasury Department and the Federal Bureau of Investigation (FBI) released a joint statement on July 6 about a cyber threat actor based in North Korea using , Maui ransomware. Groups affiliated with this ransomware are mostly known for inflicting apparently North Korean government-sponsored ransomware attacks on healthcare sectors. Maui employs a single extortion method, so it does not exfiltrate data or remove system backups.<\/u><\/u>\u00a0<\/u><\/u><\/p>\n

The curious thing is that it does not employ a lateral movement technique (when the attacker spreads from a non-confidential point or account to the rest of the network) and does not send a note instructing its victims to pay the ransom. However, Maui uses a hybrid encryption method combining AES, RSA encryption, and XOR encryption for increased impact. While the RSA algorithm generates a new public-private key pair, the AES algorithm encrypts each file in CBC mode. After each file is encrypted with a unique secret key, those secret keys are encrypted with the public key that is generated right at the start of the attack.<\/u><\/u><\/u>\u00a0<\/u><\/p>\n

The Picus Threat Library included the following threats for Maui ransomware: Maui Ransomware Download Threat (Network Infiltration) \u2013 ID 56700 and Maui Ransomware Email Threat (Email Infiltration (Phishing)) \u2013 ID 64940<\/u><\/u>\u00a0<\/u><\/u><\/p>\n

2. Green Stone Malware Dropper<\/strong><\/u><\/u><\/p>\n

In late July, many Iranian companies received an Office Open XML document containing a malicious macro, whose functions unpack and run an executable in a temporary directory, which is a common practice employed in cyberattacks to avoid detection. Further analysis showed that the executable has cyber-espionage capabilities. It collects information about the operating system, takes screenshots and sends the collected data to a remote server.<\/u><\/u><\/p>\n

\"\"<\/u><\/p>\n

Figure 1: Malicious executable contained in the Office Open XML document:\u00a0Green Stone Malware Dropper<\/strong><\/a><\/u><\/u><\/p>\n

\u00a0<\/u><\/u>Analysis of this malware points to an unusual technique of exchanging commands using a Telegram bot. This technique avoids unnecessary communications with a remote server and hides the C2 server.<\/u><\/u><\/p>\n

\u00a0<\/u><\/u>\"\"<\/strong><\/u>Figure 2:\u00a0Commands<\/a>\u00a0supported via a Telegram bot<\/u><\/u><\/p>\n

\u00a0<\/u><\/u>\u201cAs many groups that use APT (advanced persistent threat) prefer to embed malicious content in a document that seems harmless, companies need to be aware of the possible threats coming from emails and evaluate the effectiveness of their XDR protection against Spam, Phishing and various malware , like the Green Stone Malware Dropper\u201d, recommends Camargo.<\/u><\/u>\u00a0<\/u><\/u><\/p>\n

The Picus Threat Library includes the following threats for the Green Stone malware dropper: Green Stone Malware Dropper Email Threat (Email Infiltration (Phishing)) \u2013 ID 69096 and Green Stone Malware Dropper Download Threat (Network Infiltration) \u2013 ID 70452<\/u><\/u><\/u>\u00a0<\/u><\/p>\n

3. The HavanaCrypt Ransomware<\/strong><\/u><\/u><\/p>\n

The year 2022 was marked by the distribution of malware disguised as legitimate programs and software updates, such as Windows 10, Google Chrome and Microsoft Exchange. This month, a new malware family, HavanaCrypt, was found in native state. This malware masquerades as a legitimate Google Software application and uses an IP address belonging to a hosting service on Microsoft Azure, which is the C2 server, to appear legitimate. Further analysis showed that the malware uses the QueueUserWorkItem function to implement a threat array for its other payloads and a .NET System.Threading namespace method, which allows a sequence of execution methods. HavanaCrypt uses KeePass Password Safe modules, an open source password manager, during the file encryption process.<\/u><\/u>\u00a0<\/u><\/u><\/p>\n

This malware is an application compiled in .NET and protects its code in a .NET assembly using Obfuscate, an open source .NET obfuscator.<\/u><\/u>\u00a0<\/u><\/u><\/p>\n

\"\"<\/p>\n

Figure 3. Obfuscated sample of HavanaCrypt<\/strong><\/u><\/u><\/p>\n

\u00a0<\/u><\/u>HavanaCrypt malware is designed to have several anti-virtualization techniques to avoid dynamic analysis in case it runs in a virtual machine. It even scans services mostly used by virtual machines like VMware Tools, VMTools and\u00a0mouse wm<\/a>???????? To analyze this malware, researchers used deobfuscation tools such as DeObfuscar and de4dot.<\/u><\/u><\/p>\n

\"\"<\/u><\/u><\/p>\n

\u00a0<\/u>Figure 4. Services scanned by HavanaCrypt malware<\/u><\/u><\/p>\n

Browser Tor directories have been found to be among the targets that HavanaCrypt avoids encrypting. The attackers may have planned to communicate with their victims via the Tor browser. Another strange thing that stands out is that criminals do not send ransom notes. \u201cWith that in mind, the researchers think that HavanaCrypt is still in the development process. However, it is important that organizations test their system against this new family of malware\u201d, warns the CEO of CLM.<\/u><\/u>\u00a0<\/u><\/u><\/p>\n

The Picus Threat Library includes the following threats for HavanaCrypt: HavanaCrypt Ransomware Email Threat (Email Infiltration (Phishing)) \u2013 ID 24728 and HavanaCrypt Ransomware Download Threat (Network Infiltration) \u2013 ID 91290<\/u><\/u><\/u>\u00a0<\/u><\/p>\n

4.\u00a0\u00a0\u00a0\u00a0<\/strong>\u00a0Lilith Ransomware<\/strong><\/u><\/u><\/p>\n

A C\/C++ console-based ransomware called Lilith has been discovered in its native state. This malware is designed for the Windows x64 architecture, and like many other ransomware operations, Lilith uses the double extortion method: it steals sensitive data, encrypts it, and sends a ransom note by providing a chat address in the Tor browser. on the target system.<\/u><\/u>\u00a0<\/u><\/u><\/p>\n

\"\"<\/p>\n

Figure 5: Ransom note sent by attackers<\/u><\/u>\u00a0<\/u><\/u><\/p>\n

Analysis shows that Lilith malware does not encrypt all types of files on the target System. For example, EXE, DLL, SYS and Program Files, Web browsers and Trash Folders are excluded from the encryption process. In addition to these files, a strange file found on the victim's system stands out: ecdh_pub_k.bin. This file is also excluded from the encryption process and stores the local public key of the BABUK ransomware infections, indicating that these two malware families may be linked in some way.<\/u><\/u>\u00a0<\/u><\/u><\/p>\n

The malware performs encryption using a Windows cryptographic API and the Windows CryptGenRandom function to generate a random key. While the researchers say the new Lilith family is nothing new, it is one of the latest that organizations need to test their systems.<\/u><\/u><\/u>\u00a0<\/u><\/p>\n

The Picus Threat Library includes the following threats for Lilith ransomware: Lilith Ransomware Email Threat (Email Infiltration (Phishing)) Lilith Ransomware Download Threat (Network Infiltration) \u2013 ID 35395 and Lilith Ransomware Download Threat (Network Infiltration) \u2013 ID 94407<\/u><\/u><\/u>\u00a0<\/u><\/p>\n

5.<\/strong>\u00a0\u00a0\u00a0\u00a0\u00a0H0lyGh0st Ransomware<\/strong><\/u><\/u><\/p>\n

H0lyGh0st is a North Korean cyber extortion threat group known for developing malware payloads and perpetrating ransomware attacks since June 2021. In 2018, they launched many successful attacks against small and medium-sized businesses such as banks , manufacturers, schools and event and meeting planning companies worldwide.<\/u><\/u><\/p>\n

\"\"<\/u><\/u><\/p>\n

Figure 6: Timeline of payloads developed and used by H0lyGh0st<\/u><\/u><\/p>\n

\u00a0<\/u><\/u>Although H0lyGh0st has been around since 2021 and tracked by MSTIC (Microsoft Threat Intelligence Center) at the time, the group now strikes back with a more persistent and improved malware variant: BTLC.exe.<\/u><\/u><\/u>\u00a0<\/u><\/p>\n

The Picus Threat Library includes the following threats for H0lyGh0st ransomware: H0lyGh0st Ransomware Malware Download Threat (Network Infiltration) \u2013 ID 20076; H0lyGh0st Ransomware Malware Email Threat (Email Infiltration (Phishing)) \u2013 ID 41450; DEV-0530 Threat Group Campaign Malware Download Threat (Network Infiltration) \u2013 ID 97451 and DEV-0530 Threat Group Campaign Malware Email Threat (Email Infiltration (Phishing)) \u2013 ID 75946<\/u><\/u><\/u>\u00a0<\/u><\/p>\n

About CLM<\/strong><\/u><\/u><\/p>\n

CLM is a value-added Latin American distributor focused on information security, data protection, data center infrastructure and cloud. The company recently received three awards: the best distributor in Latin America by Nutanix, an award won for the quality and agility in the services provided to the channels; the Lenovo\/Intel Best Growth LA Partner award given to the company that stands out the most in terms of sales growth; and the Infor Channel Distribution Excellence, an achievement that is due to CLM's commitment to excellence and tireless pursuit of providing the best solutions and services to business partners.<\/u><\/u><\/p>\n

Headquartered in S\u00e3o Paulo, the company has affiliates in the US, Colombia, Peru and Chile. With an extensive network of VARs in Latin America and enormous experience in the market, CLM is constantly looking for innovative and disruptive solutions to provide more and more value for its channels and customers.\u00a0<\/u><\/u>www.CLM.international<\/a><\/u><\/u><\/p>\n

About Picus Security<\/strong><\/u><\/u><\/p>\n

Founded in 2013 by cybersecurity veterans with academic backgrounds and extensive hands-on experience, Picus Security pioneered Breach and Attack Simulation (BAS) technology, helping organizations improve their cyber resilience ever since. The company is recognized by Frost & Sullivan as one of the most innovative vendors in the BAX market, as well as being the highest rated BAS company by Gartner Peer Insights.\u00a0<\/u><\/u>www.PicusSecurity.com<\/a><\/p>","protected":false},"excerpt":{"rendered":"

Novos grupos e fam\u00edlias de malwares exigem agilidade na resposta e evidenciam a necessidade de simular viola\u00e7\u00f5es nos sistemas de prote\u00e7\u00e3o Em mais um m\u00eas agitado para os CISOS, o relat\u00f3rio da Picus Security, pioneira em simula\u00e7\u00e3o de viola\u00e7\u00e3o e ataque (BAS – Breach and Attack Simulation), mostra o surgimento de campanhas de ciberataques deflagradas […]<\/p>\n","protected":false},"author":10,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_et_pb_use_builder":"","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":""},"categories":[39,19],"tags":[],"class_list":["post-49088","post","type-post","status-publish","format-standard","hentry","category-coluna-4","category-ultimas-noticias"],"acf":[],"yoast_head":"\nCLM e Picus analisam as cinco principais ciberamea\u00e7as que surgiram em julho - ABES<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/abes.org.br\/en\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"CLM e Picus analisam as cinco principais ciberamea\u00e7as que surgiram em julho - ABES\" \/>\n<meta property=\"og:description\" content=\"Novos grupos e fam\u00edlias de malwares exigem agilidade na resposta e evidenciam a necessidade de simular viola\u00e7\u00f5es nos sistemas de prote\u00e7\u00e3o Em mais um m\u00eas agitado para os CISOS, o relat\u00f3rio da Picus Security, pioneira em simula\u00e7\u00e3o de viola\u00e7\u00e3o e ataque (BAS – Breach and Attack Simulation), mostra o surgimento de campanhas de ciberataques deflagradas […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/abes.org.br\/en\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\/\" \/>\n<meta property=\"og:site_name\" content=\"ABES\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/ABES.software\" \/>\n<meta property=\"article:published_time\" content=\"2022-08-26T11:01:58+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/abes.org.br\/wp-content\/uploads\/2022\/08\/unnamed-1.jpg\" \/>\n<meta name=\"author\" content=\"Editor ABES\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@ABES_SOFTWARE\" \/>\n<meta name=\"twitter:site\" content=\"@ABES_SOFTWARE\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Editor ABES\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"10 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/abes.org.br\\\/en\\\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/abes.org.br\\\/en\\\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\\\/\"},\"author\":{\"name\":\"Editor ABES\",\"@id\":\"https:\\\/\\\/abes.org.br\\\/#\\\/schema\\\/person\\\/d65ed84c8883a123fe668129fd6a7ed3\"},\"headline\":\"CLM e Picus analisam as cinco principais ciberamea\u00e7as que surgiram em julho\",\"datePublished\":\"2022-08-26T11:01:58+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/abes.org.br\\\/en\\\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\\\/\"},\"wordCount\":2037,\"publisher\":{\"@id\":\"https:\\\/\\\/abes.org.br\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/abes.org.br\\\/en\\\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/abes.org.br\\\/wp-content\\\/uploads\\\/2022\\\/08\\\/unnamed-1.jpg\",\"articleSection\":[\"-Coluna 4\",\"\u00daltimas not\u00edcias\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/abes.org.br\\\/en\\\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\\\/\",\"url\":\"https:\\\/\\\/abes.org.br\\\/en\\\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\\\/\",\"name\":\"CLM e Picus analisam as cinco principais ciberamea\u00e7as que surgiram em julho - ABES\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/abes.org.br\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/abes.org.br\\\/en\\\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/abes.org.br\\\/en\\\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/abes.org.br\\\/wp-content\\\/uploads\\\/2022\\\/08\\\/unnamed-1.jpg\",\"datePublished\":\"2022-08-26T11:01:58+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/abes.org.br\\\/en\\\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/abes.org.br\\\/en\\\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/abes.org.br\\\/en\\\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\\\/#primaryimage\",\"url\":\"https:\\\/\\\/abes.org.br\\\/wp-content\\\/uploads\\\/2022\\\/08\\\/unnamed-1.jpg\",\"contentUrl\":\"https:\\\/\\\/abes.org.br\\\/wp-content\\\/uploads\\\/2022\\\/08\\\/unnamed-1.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/abes.org.br\\\/en\\\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"In\u00edcio\",\"item\":\"https:\\\/\\\/abes.org.br\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"CLM e Picus analisam as cinco principais ciberamea\u00e7as que surgiram em julho\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/abes.org.br\\\/#website\",\"url\":\"https:\\\/\\\/abes.org.br\\\/\",\"name\":\"ABES\",\"description\":\"Associa\u00e7\u00e3o Brasileira das Empresas de Software\",\"publisher\":{\"@id\":\"https:\\\/\\\/abes.org.br\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/abes.org.br\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/abes.org.br\\\/#organization\",\"name\":\"Associa\u00e7\u00e3o Brasileira das Empresas de Software\",\"url\":\"https:\\\/\\\/abes.org.br\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/abes.org.br\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/abes.org.br\\\/wp-content\\\/uploads\\\/2020\\\/09\\\/logo_abes_marca_d_tagline_horizontal_verde-amarelo_cmyk.png\",\"contentUrl\":\"https:\\\/\\\/abes.org.br\\\/wp-content\\\/uploads\\\/2020\\\/09\\\/logo_abes_marca_d_tagline_horizontal_verde-amarelo_cmyk.png\",\"width\":324,\"height\":70,\"caption\":\"Associa\u00e7\u00e3o Brasileira das Empresas de Software\"},\"image\":{\"@id\":\"https:\\\/\\\/abes.org.br\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/ABES.software\",\"https:\\\/\\\/x.com\\\/ABES_SOFTWARE\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/abes-software\\\/\",\"https:\\\/\\\/www.instagram.com\\\/abes_software\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/abes.org.br\\\/#\\\/schema\\\/person\\\/d65ed84c8883a123fe668129fd6a7ed3\",\"name\":\"Editor ABES\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3b207abce016c5e2ad6bf38914af9ad16e277128bb9b06dabb05bc191f02d7fe?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3b207abce016c5e2ad6bf38914af9ad16e277128bb9b06dabb05bc191f02d7fe?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3b207abce016c5e2ad6bf38914af9ad16e277128bb9b06dabb05bc191f02d7fe?s=96&d=mm&r=g\",\"caption\":\"Editor ABES\"},\"url\":\"https:\\\/\\\/abes.org.br\\\/en\\\/author\\\/editor-abes\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"CLM and Picus analyze the five main cyberthreats that emerged in July - ABES","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/abes.org.br\/en\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\/","og_locale":"en_US","og_type":"article","og_title":"CLM e Picus analisam as cinco principais ciberamea\u00e7as que surgiram em julho - ABES","og_description":"Novos grupos e fam\u00edlias de malwares exigem agilidade na resposta e evidenciam a necessidade de simular viola\u00e7\u00f5es nos sistemas de prote\u00e7\u00e3o Em mais um m\u00eas agitado para os CISOS, o relat\u00f3rio da Picus Security, pioneira em simula\u00e7\u00e3o de viola\u00e7\u00e3o e ataque (BAS – Breach and Attack Simulation), mostra o surgimento de campanhas de ciberataques deflagradas […]","og_url":"https:\/\/abes.org.br\/en\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\/","og_site_name":"ABES","article_publisher":"https:\/\/www.facebook.com\/ABES.software","article_published_time":"2022-08-26T11:01:58+00:00","og_image":[{"url":"https:\/\/abes.org.br\/wp-content\/uploads\/2022\/08\/unnamed-1.jpg","type":"","width":"","height":""}],"author":"Editor ABES","twitter_card":"summary_large_image","twitter_creator":"@ABES_SOFTWARE","twitter_site":"@ABES_SOFTWARE","twitter_misc":{"Written by":"Editor ABES","Est. reading time":"10 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/abes.org.br\/en\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\/#article","isPartOf":{"@id":"https:\/\/abes.org.br\/en\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\/"},"author":{"name":"Editor ABES","@id":"https:\/\/abes.org.br\/#\/schema\/person\/d65ed84c8883a123fe668129fd6a7ed3"},"headline":"CLM e Picus analisam as cinco principais ciberamea\u00e7as que surgiram em julho","datePublished":"2022-08-26T11:01:58+00:00","mainEntityOfPage":{"@id":"https:\/\/abes.org.br\/en\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\/"},"wordCount":2037,"publisher":{"@id":"https:\/\/abes.org.br\/#organization"},"image":{"@id":"https:\/\/abes.org.br\/en\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\/#primaryimage"},"thumbnailUrl":"https:\/\/abes.org.br\/wp-content\/uploads\/2022\/08\/unnamed-1.jpg","articleSection":["-Coluna 4","\u00daltimas not\u00edcias"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/abes.org.br\/en\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\/","url":"https:\/\/abes.org.br\/en\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\/","name":"CLM and Picus analyze the five main cyberthreats that emerged in July - ABES","isPartOf":{"@id":"https:\/\/abes.org.br\/#website"},"primaryImageOfPage":{"@id":"https:\/\/abes.org.br\/en\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\/#primaryimage"},"image":{"@id":"https:\/\/abes.org.br\/en\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\/#primaryimage"},"thumbnailUrl":"https:\/\/abes.org.br\/wp-content\/uploads\/2022\/08\/unnamed-1.jpg","datePublished":"2022-08-26T11:01:58+00:00","breadcrumb":{"@id":"https:\/\/abes.org.br\/en\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/abes.org.br\/en\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/abes.org.br\/en\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\/#primaryimage","url":"https:\/\/abes.org.br\/wp-content\/uploads\/2022\/08\/unnamed-1.jpg","contentUrl":"https:\/\/abes.org.br\/wp-content\/uploads\/2022\/08\/unnamed-1.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/abes.org.br\/en\/clm-e-picus-analisam-as-cinco-principais-ciberameacas-que-surgiram-em-julho\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"In\u00edcio","item":"https:\/\/abes.org.br\/"},{"@type":"ListItem","position":2,"name":"CLM e Picus analisam as cinco principais ciberamea\u00e7as que surgiram em julho"}]},{"@type":"WebSite","@id":"https:\/\/abes.org.br\/#website","url":"https:\/\/abes.org.br\/","name":"ABES","description":"Brazilian Association of Software Companies","publisher":{"@id":"https:\/\/abes.org.br\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/abes.org.br\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/abes.org.br\/#organization","name":"Brazilian Association of Software Companies","url":"https:\/\/abes.org.br\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/abes.org.br\/#\/schema\/logo\/image\/","url":"https:\/\/abes.org.br\/wp-content\/uploads\/2020\/09\/logo_abes_marca_d_tagline_horizontal_verde-amarelo_cmyk.png","contentUrl":"https:\/\/abes.org.br\/wp-content\/uploads\/2020\/09\/logo_abes_marca_d_tagline_horizontal_verde-amarelo_cmyk.png","width":324,"height":70,"caption":"Associa\u00e7\u00e3o Brasileira das Empresas de Software"},"image":{"@id":"https:\/\/abes.org.br\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/ABES.software","https:\/\/x.com\/ABES_SOFTWARE","https:\/\/www.linkedin.com\/company\/abes-software\/","https:\/\/www.instagram.com\/abes_software\/"]},{"@type":"Person","@id":"https:\/\/abes.org.br\/#\/schema\/person\/d65ed84c8883a123fe668129fd6a7ed3","name":"ABES Editor","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/3b207abce016c5e2ad6bf38914af9ad16e277128bb9b06dabb05bc191f02d7fe?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/3b207abce016c5e2ad6bf38914af9ad16e277128bb9b06dabb05bc191f02d7fe?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/3b207abce016c5e2ad6bf38914af9ad16e277128bb9b06dabb05bc191f02d7fe?s=96&d=mm&r=g","caption":"Editor ABES"},"url":"https:\/\/abes.org.br\/en\/author\/editor-abes\/"}]}},"publishpress_future_action":{"enabled":false,"date":"2026-04-27 14:45:33","action":"change-status","newStatus":"draft","terms":[],"taxonomy":"category","extraData":[]},"publishpress_future_workflow_manual_trigger":{"enabledWorkflows":[]},"_links":{"self":[{"href":"https:\/\/abes.org.br\/en\/wp-json\/wp\/v2\/posts\/49088","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/abes.org.br\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/abes.org.br\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/abes.org.br\/en\/wp-json\/wp\/v2\/users\/10"}],"replies":[{"embeddable":true,"href":"https:\/\/abes.org.br\/en\/wp-json\/wp\/v2\/comments?post=49088"}],"version-history":[{"count":1,"href":"https:\/\/abes.org.br\/en\/wp-json\/wp\/v2\/posts\/49088\/revisions"}],"predecessor-version":[{"id":49096,"href":"https:\/\/abes.org.br\/en\/wp-json\/wp\/v2\/posts\/49088\/revisions\/49096"}],"wp:attachment":[{"href":"https:\/\/abes.org.br\/en\/wp-json\/wp\/v2\/media?parent=49088"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/abes.org.br\/en\/wp-json\/wp\/v2\/categories?post=49088"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/abes.org.br\/en\/wp-json\/wp\/v2\/tags?post=49088"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}