Subscribe to ThreatSTOP feed
Updated: 2 hours 44 min ago

ThreatSTOP & Reposify Partner to Stop DDoS Attacks from Infected IoT Devices & Services

Tue, 05/09/2017 - 18:54
Cyber Security Startups Combine Threat Data & Real-Time Policy Delivery Platform to Address Huge Gap in Cybersecurity.

Knock-Knock! Who’s There? ... NoTrove.

Tue, 05/09/2017 - 17:34


Internet-based advertising has been in wide use since the early 21st century. Its popularity grew in 2010 with the development of programmatic advertising. (Also referred to as automated advertainment) Here, you pay per ad view, which can be maliciously misused by counting machines and bots as actual viewers. Additional types of malicious use include accumulating web traffic and selling it to web traffic brokers, or engaging this traffic in semi-malicious programs like PUP. (Potentially Unwanted Programs)

Targets for inbound attacks & whitelisting major services in policies

Tue, 05/09/2017 - 14:54

We are happy to announce the release of a new Blacklist target for our IP Firewall service.

Use of VPN and Tor Traffic Allows Corporate Security Bypassing

Mon, 05/08/2017 - 23:47


We’ve all been bored at work, that’s a given. We don’t have a need to go crashing through the brush looking for our next meal and that leaves our brains with a bunch of extra cycles to spend on life in the modern world. That means our personal lives, our jobs, and what to have for lunch.

New DGA targets for DNS Firewall policy

Thu, 05/04/2017 - 13:20

ThreatSTOP’s Security Research Team has been busily tracking down new threat sources and compiling publicly shared data from multiple research teams. The result is our New Domain Generation Algorithm (DGA) target collection.

Bi-Weekly Security Update 4/28/17

Fri, 04/28/2017 - 19:50

Dimnie: Targeting the Unexpected

Wed, 04/26/2017 - 17:14


GitHub is a platform used to share any type of code. For this reason, it’s an important part of research and information sharing within the cyber security field. Because it’s a part of this environment, it’s inevitable that malicious actors will try to infect users’ platforms with malware.

Bi-Weekly Security Update 4/17/17

Mon, 04/17/2017 - 17:34

Malicious Content Identified and Inserted:

New Targets to Protect Against Incoming Attacks

Mon, 04/03/2017 - 12:49

We are happy to announce the release of 3 new targets, including updates to 3 existing ones. The new IPs derive from live attacks targeting online servers. This data is collected by the voluntary service,

Bi-Weekly Security Update 3/29/17

Wed, 03/29/2017 - 17:33

Bi-Weekly Security Update 3/15/2017

Wed, 03/15/2017 - 17:02


Malicious Content Identified and Inserted:

  • IPs – 3680
  • Domains – 603

Target List Content Updated:

  • TSCritical
  • TSRansomware
  • TSPhishing
  • TSBanking

EITest – The Long Living Campaign

Wed, 03/08/2017 - 13:22

EITest is a campaign initially discovered in 2014 by Malwarebytes. It distributes malware (that uses iframes) through a flash file on a compromised site, followed by exploitation through an Exploit Kit. In the past, this campaign was used to distribute malware including Cerber, CryptoMix, CryptoShield, Gootkit and the Chthonic banking Trojan, all using various types of Exploit Kits.