Bavelle Technologies

12/29/2022

All organizations need traditional endpoint protection to secure their networks against threats, but traditional tools alone are not enough.

Deceptive Bytes creates dynamic and deceptive information that interferes with any attempt to recon the environment and deters the malware from executing its malicious intents. This fully endpoint-centric solution makes malware believe it's in a hostile environment to attack, reducing the chance of infection while actively responding to threats as they evolve, changing the outcome of the attacks.

Explore how to strategically layer your endpoint security with deception technology: https://www.bavelle.com/deceptivebytes/

12/27/2022

Organizations in the food sector are being targeted in business email compromise (BEC) attacks to steal entire shipments of food according to the FBI. These attacks involve spoofing email addresses and domains or using compromised email accounts.

To combat BEC attacks, GateScanner Mail Gateway combines the power of Content Disarm and Reconstruction (CDR) file sanitization with complete Secure Email Gateway capabilities. Each email will experience deep-content URL categorization, real-time IP reputation, anti-phishing analysis, anti-spam and anti-spoofing detection, and file cleansing prior to entering a user’s inbox.

We also strongly recommend verifying the order of the purchasing company by conducting thorough research on them and contacting them outside of email.

Learn how to protect your organization from fraudulent emails: https://www.bavelle.com/sasa-software/

Organizations in the food sector are now also targeted in business email compromise (BEC) attacks, according to a joint advisory issued by the FBI, the Food and Drug Administration Office of Criminal Investigations (FDA OCI), and the U.S. Department of Agriculture (USDA).

12/22/2022

A Colombian Energy supplier was hit by BlackCat ransomware, disrupting the company's operations, taking down online services, and stealing a wide variety of data.

BlackCat exploits different attack vectors to infiltrate networks, including Exchange server vulnerabilities, remote desktop, stolen credentials, email, and more. Once in, it will use a data-theft tool to extract sensitive information prior to encrypting devices on the network.

To protect against BlackCat in both IT and OT environments, GateScanner, using Content Disarm and Reconstruction (CDR) technology, will ensure any files or emails entering the network are free of potentially malicious or undetectable malware.

Colombian energy company Empresas Públicas de Medellín (EPM) suffered a BlackCat/ALPHV ransomware attack on Monday, disrupting the company's operations and taking down online services.

12/21/2022

A Rust variant of a ransomware strain called Agenda, is targeting Critical Infrastructure organizations using Windows-based systems. It reboots systems in safe mode, stops server-specific processes and services, runs on multiple modes, and uses partial encryption.

In addition, threat actors are increasingly adopting the Rust language as it's difficult to analyze and has a lower detection rate by AV engines.

Learn how our solutions take security a step further beyond traditional AV alone: https://www.bavelle.com/partners/

Agenda Ransomware joins the growing list of malware strains written in cross-platform Rust programming language.

12/19/2022

How do you know if a file or maintenance update uploaded onto your OT network from a portable media device is secure?

Any portable media device, such as USBs, CDs, DVDs, etc., should be scanned before inserting into the network. GateScanner Kiosks serve as the gateway between external devices and the OT network to ensure safe data transfer after eliminating malicious content using Content Disarm and Reconstruction (CDR) technology.

Count on GateScanner Kiosk to protect your OT infrastructure: https://www.bavelle.com/sasa-software/

12/16/2022

Many malicious framework toolkits designed to attack air-gapped networks use USB drives as the primary contaminating agent.

To prevent malicious attacks, USB drives must be sanitized before crossing into secure networks.

GateScanner Kiosk sanitizes portable media inserted on the Kiosk, by using Content Disarm and Reconstruction technology to deconstruct the files, perform deep threat scans, and reconstruct them into safe, neutralized copies that can be duplicated onto a clean USB or into the air-gapped network.

Increase the security of your SCADA and industrial control systems with GateScanner: https://www.bavelle.com/sasa-software/

12/15/2022

California's finance department sustained a cybersecurity attack by the infamous LockBit group, that may have resulted in the exfiltration and encryption of IT and financial data.

LockBit is known for its widespread variant in Q3 of 2022 since it self-spreads, targets specific organizations, and uses native system tools. The group is now providing it as Ransomware-as-a-service (RaaS) to expand its reach.

Connect with our cybersecurity experts if you have any questions on how to protect your network against compromise: https://www.bavelle.com/contact-us/

At the time of writing, the California Budget website remains offline

12/14/2022

Energy companies managing facilities on North America's Bulk Electric System (BES) are required to follow NERC CIP standards. The goal of these standards is to ensure appropriate physical and cyber security controls are in place to protect critical infrastructure from threats.

GateScanner Kiosk specifically addresses NERC CIP-003 Compliance for transient media to ensure consistent and sustainable security management control in OT networks.

Learn how GateScanner can help you maintain your NERC CIP Compliance: https://www.bavelle.com/sasa-software/

11/30/2022

DUCKTAIL malware is targeting employees with access to Facebook business and ads management accounts using spear phishing attacks. By performing extensive research on victims to create customized campaigns, the attacks are less likely to raise suspicion.

To prevent DUCKTAIL infection, GateScanner Mail, using Content Disarm and Reconstruction (CDR) technology, will remove embedded malware from emails and attachments while disarming malicious download links. GateScanner sanitizes every incoming file and email, removing known, zero-day, and undetectable file-based malware.

Discover how CDR takes malware detection and PREVENTION to the next level: https://www.bavelle.com/sasa-software/

The spear phishing group has revised its tactics and is employing more sophisticated techniques and tactics based on what appears to be extensive research into Facebook business and ads management accounts.

11/14/2022

Malware are cleverly finding ways to retrieve current location and assets, check environment information, and evade security systems. Deceptive Bytes blocks these attempts using dynamic and deceptive information against malware at the endpoint.

Discover how one deception platform can protect your endpoints against numerous malware: https://www.bavelle.com/deceptivebytes/

11/10/2022

GateScanner Kiosk allows users to freely transfer files from portable media devices to destinations on the network without compromising security. GateScanner applies Content Disarm and Reconstruction (CDR) technology to the incoming files to eliminate known, unknown, and undetectable embedded malware.

Experience advanced protection against file-based cyberattacks on portable media devices: https://www.bavelle.com/sasa-software/

11/04/2022

Ransomware attacks against State and Local Governments have increased by 70% over the past year.

Many are choosing to reduce the risks by taking cyber insurance coverage, which is getting increasingly difficult for government organizations to secure. With this in mind, it's important to ensure strong defenses at all points in the environment to prevent potential compromise in the first place and to qualify for coverage. Sophos' annual study of the State of Ransomware in State and Local Government 2022 summarizes these trends. Reach out for the full report.

Enhance your security posture with Bavelle: https://www.bavelle.com/cyber-security/

Note: The State and Local Cybersecurity Grant Program is awarding $1B over the next 4 years to boost the cybersecurity postures of state and local government organizations; learn more about it here: https://www.sophos.com/en-us/content/slcgp?id=00130000019KMcL