Research

February 8, 2022

Microsoft disables Excel, Office macros by default. Will it matter?

Microsoft disabled two decades-old scripting languages in its Office products, long a favorite tool of cybercriminals. The security impact may be less than you think, however.
January 26, 2022

After Russian arrests, REvil implants persist

Almost two weeks after Russian authorities claimed to have dismantled the REvil ransomware group with a string of arrests, evidence for a reduction in the availability of REvil implants has yet to appear.
January 6, 2022

Here’s what happened with Log4Shell while you were out

ReversingLabs assists companies in mitigating software supply chain attacks and vulnerabilities like Log4Shell
December 30, 2021

A look back at 2021: The year ransomware took the gloves off

Ransomware gangs and nation-states launched attacks on critical infrastructure with cyber-physical consequences
December 29, 2021

A look back at 2021: The year supply chain threats went mainstream

Ransomware may have grabbed most of the headlines, but history will remember 2021 as the year that governments and companies finally woke up to the lurking threat posed by vulnerable software supply chains
July 21, 2021

Groundhog day: NPM package caught stealing browser passwords

Today almost everyone knows that they need to protect their publicly exposed services and applications against the potential attacks from the outside
July 15, 2021

Data Exfiltrator

A New Tactic for Ransomware Adversaries
July 7, 2021

Third-party code comes with some baggage

Recognizing risks introduced by statically linked third-party libraries
April 28, 2021

Spotting malicious Excel4 macros

Relying on legacy functionalities comes with inherent security risks
April 1, 2021

Code Reuse Across Packers and DLL Loaders

Packers and DLL Loaders
March 12, 2021

DotNET Loaders

Many families of remote access trojan (RAT) are .NET executables
March 2, 2021

Malware in Images: When You Can’t See “the Whole Picture”

When you can’t see “the whole picture”

SUBSCRIBE

Get the Best of the ReversingLabs newsletter delivered to your in-box weekly to stay up to date on key trends, analysis and best practices across threat intelligence and software supply chain security.

ConversingLabs Cafe: Chris Romeo on the state of application security ConversingLabs Cafe: Chris Romeo on the state of application security
Conversations About Threat Hunting and Software Supply Chain Security
Behaviors & Diffs: Better Together for Software Supply Chain Security Behaviors & Diffs: Better Together for Software Supply Chain Security
Glassboard conversations with ReversingLabs Field CISO Matt Rose
Software Package Deconstruction: Deconstructing UPS Ship Manager Software Package Deconstruction: Deconstructing UPS Ship Manager
Analyzing Risks To Your Software Supply Chain