Credit to Author: Feike Hacquebord| Date: Thu, 15 Dec 2022 00:00:00 +0000
Ransomware groups and their business models are expected to change from what and how we know it to date. In this blog entry, we summarize from some of our insights the triggers that spark the small changes in the short term (“evolutions”) and the bigger deviations (“revolutions”) they can redirect their criminal enterprises to in the long run.
Read moreCredit to Author: Jaromir Horejsi| Date: Wed, 14 Dec 2022 00:00:00 +0000
This report examines the infection chain and the pieces of malware used by malicious actors in supply-chain attacks that leveraged trojanized installers of chat-based customer engagement platforms.
Read moreCredit to Author: Mickey Jin| Date: Fri, 11 Nov 2022 00:00:00 +0000
This blog entry details our investigation of CVE-2019-8561, a vulnerability that exists in the macOS PackageKit framework, a component used to install software installer packages (PKG files).
Read moreCredit to Author: Hara Hiroaki| Date: Wed, 09 Nov 2022 00:00:00 +0000
We looked into the campaigns deployed by a new subgroup of advanced persistent threat (APT) group APT41, Earth Longzhi. This entry breaks down the technical details of the campaigns in full as presented at HITCON PEACE 2022 in August.
Read moreCredit to Author: Eric Skinner| Date: Mon, 31 Oct 2022 00:00:00 +0000
Potential disruptions following vulnerabilities found in OpenSSL.
Read moreCredit to Author: Eric Skinner| Date: Mon, 31 Oct 2022 00:00:00 +0000
Potential disruptions following vulnerabilities found in OpenSSL.
Read moreCredit to Author: Eric Skinner| Date: Mon, 31 Oct 2022 00:00:00 +0000
Potential disruptions following vulnerabilities found in OpenSSL.
Read moreCredit to Author: Nitesh Surana| Date: Wed, 26 Oct 2022 00:00:00 +0000
We found malicious samples attempting to steal Amazon Elastic Compute Cloud (EC2) Workloads’ access keys and tokens via typosquatting and the abuse of legitimate tools.
Read more