InfoSec Articles (03/15/21 – 03/29/21)

InfoSec Articles (03/15/21 – 03/29/21)

In this second half of March, we observed an interesting email campaign by a threat actor we track as TA800. They distributed a new malware we are calling NimzaLoader. Also, another ransomware gang has started to target vulnerable Exchange servers with another...
InfoSec Articles (02/15/21 – 03/01/21)

InfoSec Articles (02/15/21 – 03/01/21)

In the last two weeks’ worth of infosec articles, we saw a lot of writing about APT activities and even a phishing attack method that uses Morse code to disguise malicious URLs. The Lookout article about the Confucious APT’s Android Spyware includes an...
InfoSec Articles (01/16/21 – 01/30/21)

InfoSec Articles (01/16/21 – 01/30/21)

On to the end of January and we’re seeing banking malware such as Vadokrist and many others. Vadokrist is written in Delphi and has an unusually large amount of unused code in the binaries. It is believed that this is an attempt to evade detection and dissuade...
InfoSec Articles (01/01/21 – 01/15/21)

InfoSec Articles (01/01/21 – 01/15/21)

On to a new year, but it’s still good to review some malware such as APT37 to help us understand more about cybercrimes. APT37 is associated with an attack that embeds macro that uses a VBA self decoding technique to decode itself within the memory spaces of MS...
InfoSec Articles (12/17/20 – 12/31/20)

InfoSec Articles (12/17/20 – 12/31/20)

On to the last day of the controversial year, cybercrime is still rife, as the attack activities of the Quasar Family. Quasar is an open-source RAT with a variety of functions. This is easy to use and therefore exploited by several APT actors. Learn more in this batch...
InfoSec Articles (12/02/20 – 12/16/20)

InfoSec Articles (12/02/20 – 12/16/20)

A week before Christmas, cryptocurrency mining botnet PGMiner is showing smarter ways to hack into a victim’s machine. At its core, PGMiner attempts to connect to the mining pool for Monero mining. Learn more on this and other malware in this batch of InfoSec...