Blog | ReversingLabs | Tomislav Peričin (2)

Catching lateral movement in internal emails

August 5, 2019

Catching lateral movement in internal emails

Email-based attacks are the most prominent threat vector that organizations see today. Like any other form of communication, emails get exploited to become carriers for a wide variety of attacks.

Ransomware in exotic email attachments

July 30, 2019

Ransomware in exotic email attachments

In the software arena, winning the mind share means becoming widespread to the point of being considered a de facto standard. And when it comes to the ways in which information is shared, this means being the object format everyone gravitates to. While aspirational for many software vendors, such success is impossible to predict, difficult to achieve, and challenging to maintain.

Catching deceptive links before the click

July 16, 2019

Catching deceptive links before the click

Email-based attacks are a nightmare personified for every defender out there. The average organization receives thousands upon thousands of email messages carrying attachments and links every day.

Digital Certificates – Models for Trust and Targets for Misuse

May 13, 2019

Digital Certificates – Models for Trust and Targets for Misuse

Certificates guarantee the origin and integrity of the message, package, application or document they are signing.

Digital Certificates – Models for Trust and Targets for Misuse

April 17, 2019

Digital Certificates – Models for Trust and Targets for Misuse

Blog 2: Trust-based models in the age of supply chain attacks: Trust is a well-understood concept each of us uses in our daily lives.

Digital Certificates – Models for Trust and Targets for Misuse

April 9, 2019

Digital Certificates – Models for Trust and Targets for Misuse

Blog 1: Building secure certificate whitelists - Whitelisting is an exercise in building and maintaining trust-based relationships. Digital certificates provide a standardized way for an organization to implement whitelisting

Forging the ShadowHammer

March 27, 2019

Forging the ShadowHammer

Operation ShadowHammer is a new and highly targeted supply chain attack discovered by Kaspersky Lab. The attack leveraged ASUS Live Update software to distribute malicious code

Latest Blog Posts

Chinese APT Group Exploits SOHO Routers

Chinese APT Group Exploits SOHO Routers

Conversations About Threat Hunting and Software Supply Chain Security

Reproducible Builds: Graduate Your Software Supply Chain Security

Reproducible Builds: Graduate Your Software Supply Chain Security

Glassboard conversations with ReversingLabs Field CISO Matt Rose

Software Package Deconstruction: Video Conferencing Software

Software Package Deconstruction: Video Conferencing Software

Analyzing Risks To Your Software Supply Chain