Enzoic and ThreatQuotient partner to protect companies from compromised credentials
Infoblox uncovers VexTrio ’ s massive criminal affiliate program
CISO news
Enzoic and ThreatQuotient partner to protect companies from compromised credentials
E nzoic , a leading provider of threat intelligence solutions , has announced a partnership with ThreatQuotient , an innovative security operations platform provider .
Through the agreement , the latter is integrating Enzoic ’ s Dark Web monitoring capabilities to scan for exposure and help customers act at the first sign of compromise .
The ThreatQ Platform provides tools for contextualising and prioritising intelligence , enabling security teams to respond more effectively to potential threats . With the Enzoic integration , customers can now tap into the company ’ s vast , dynamically updated database of exposure incidents . The scanning happens automatically , with any exposures immediately presented in ThreatQ ’ s intuitive , graphical dashboard . and take swift action as soon as exposure is detected . The ThreatQ Platform is already a valuable resource for security operations to become more data-driven , efficient and effective by getting the right data to the right systems and teams at the right time . Our Dark Web insights serve to broaden the scope of potential threats that can be identified .”
The integration utilises Enzoic ’ s Exposure API for monitoring potential user and domain exposures on the Dark Web , enabling organisations to pinpoint when credentials are compromised .
“ User credentials continue to be among hackers ’ most sought-after targets ,” said Mike Wilson , Founder and CTO , Enzoic .
“ With Enzoic ’ s threat intelligence , ThreatQuotient customers can fight back
Infoblox uncovers VexTrio ’ s massive criminal affiliate program
nfoblox has recently released new research that unveils critical insights into the cybercriminal entity VexTrio , exposing
I its complex network of malicious connections with other cybercriminal enterprises , such as ClearFake and SocGholish .
This work , done in collaboration with the security researcher who discovered the ClearFake malware , aims to reveal the depth of these threat actors ’ affiliations and expose their illicit activities that have also been detected within networks globally .
VexTrio controls a large and malicious network that reaches a wide audience of internet users . Through a criminal affiliate program with over 60 partners , including high-profile entities like SocGholish and ClearFake – it stands out as the most pervasive DNS threat actor , operating for six years and impacting over 50 % of customer networks . Its role as an invisible traffic broker has kept it undetected by other vendors .
Infoblox ’ s research has also generated a number of other major findings . In particular :
• VexTrio operates their affiliate program in a unique way , providing a small number of dedicated servers to each affiliate .
• VexTrio ’ s affiliate relationships appear longstanding . For example , SocGholish has been a VexTrio affiliate since at least April 2022 . While less total time , Infoblox assess ClearFake has worked with VexTrio throughout its lifetime ; at least since launching their campaigns in August 2023 .
WWW . INTELLIGENTCISO . COM 7