Integrating Intelligence: InQuest Meets ITPIE

This month, we’re thrilled to announce a powerful new integration between InQuest and ITPIE (Information Technology Programmable Integration Engine). Together, these technologies create a robust synergy for cyber threat intelligence and IT asset management. While InQuest delivers deep insights into cyber threats and malware, ITPIE enhances operational visibility by discovering and correlating data on both network-attached and air-gapped devices. This integration empowers organizations to uncover hidden vulnerabilities, enrich data with organizational context, and generate actionable intelligence. Whether you're tackling anomalies with ITPIE’s AI/ML engine or defending against threats with InQuest, this collaboration ensures a seamless, holistic approach to securing and managing your IT environment. Learn more about ITPIE.

InQuest Email Attack Simulation

This month we harvested 552 samples from the wild capable of bypassing either Microsoft or Google. Of those, Microsoft missed 170 (31%), and Google missed 195 (35%). InQuest, MailTAC for reference, missed 45 (8%). The distribution of misses by file type is depicted below:

InQuest EAS includes samples sourced from 50+ industry leading blogs. This month, we sourced 513 samples from these blogs for inclusion in attack simulation.

Want to validate the efficacy of your email security stack? InQuire here for a one-month free email attack simulation.

InQuest Latest Blog Posts

Enhanced Defense Against Nation-State Attacks through OPSWAT's Acquisition of InQuest

Posted on 2024-11-04 by Michael Arcamone

Critical national infrastructure faces relentless cyberthreats from increasingly sophisticated adversaries, and the role of threat intelligence has never been more crucial. The landscape of cyber warfare has evolved, with nation-state threat actors and other advanced adversaries targeting vital systems that underpin our societies—ranging from energy grids to transportation networks. To defend against these evolving threats, organizations must leverage advanced threat intelligence that not only detects threats but anticipates them. This is where OPSWAT’s recent acquisition of InQuest marks a significant step forward in strengthening the defense of critical infrastructure.

InQuest Labs Research Spotlight

DInvoke_rs

Rust port of Dinvoke. DInvoke_rs may be used for many purposes such as PE parsing, dynamic exported functions resolution, dynamically loading PE plugins at runtime, API hooks evasion and more.

AeroSpace

AeroSpace is an i3-like tiling window manager for macOS.

bubbletea

The fun, functional and stateful way to build terminal apps. A Go framework based on The Elm Architecture. Bubble Tea is well-suited for simple and complex terminal applications, either inline, full-window, or a mix of both.

Global Security Events

Wanted Russian Hacker Linked to Hive and LockBit Ransomware Arrested

A Russian cybercriminal wanted in the U.S. in connection with LockBit and Hive ransomware operations has been arrested by law enforcement authorities in the country. According to a news report from Russian media outlet RIA Novosti, Mikhail Pavlovich Matveev has been accused of developing a malicious program designed to encrypt files and seek ransom in return for a decryption key.

Salt Typhoon Builds Out Malware Arsenal With GhostSpider

The Chinese threat actor known as Salt Typhoon has been spying on some high-value government and telecommunications organizations for several years now, recently debuting fresh backdoor malware, dubbed GhostSpider.

Over 600,000 Records, Including Background Checks, Vehicle, and Property Records Exposed Online by an Information Service Provider

Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to Website Planet about a non-password-protected database that contained more than 600K records belonging to SL Data Services/Propertyrec — an information research provider that offers real estate ownership data and criminal records search information.

Useful Links

Support

Social

X.com

GitHub

InQuest Insider - Your monthly resource for the latest in cyber security news, trends, tips, and tools. Subscribe here.

Unsubscribe here.