SupPy Chain Malware - Detecting malware in package manager repositories
Malicious actors are constantly on the lookout for new attack vectors and techniques, using them to infiltrate even the most secure of organizations.
Threat Research
SupPy Chain Malware - Detecting malware in package manager repositories
Catching deceptive links before the click
Blog 1 of 5 part series on advanced research into modern phishing attacks
Digital Certificates - Models for Trust and Targets for Misuse 5
Blog 5: Subverting trust with digital counterfeits
Digital Certificates – Models for Trust and Targets for Misuse 4
Blog 4: You are you, but so am I - certificate impersonation
Digital Certificates – Models for Trust and Targets for Misuse 3
Tampering with signed objects without breaking the integrity seal
Digital Certificates – Models for Trust and Targets for Misuse 2
Blog 2: Trust-based models in the age of supply chain attacks
Digital Certificates – Models for Trust and Targets for Misuse 1
Blog 1: Building secure certificate whitelists
Forging the ShadowHammer
Operation ShadowHammer is a new and highly targeted supply chain attack discovered by Kaspersky Lab.
Integrating Isolation with Analytics
Guest blog by Edvard Amoroso, Founder and CEO of TAG Cyber
Three New DDE Obfuscation Methods
The natural order of things is to evolve, so it was just a matter of time until obfuscations and variations would start appearing in the wild.
Detecting Certificate-Signed Malware
Join ReversingLabs Research on a Threat Hunt for revoked D-Link certificates
ReversingLabs' YARA rule detects a Cobalt payload exploiting CVE-2017-11882
A 17-year-old vulnerability in Microsoft Office Equation Editor is now confirmed to be exploited by the Cobalt Group
ReversingLabs' YARA rule detects BadRabbit encryption routine specifics
BadRabbit a previously unknown ransomware family which started spreading on October 24th
Constant Insecurity: Things you didn’t know about (PE) Portable Executable file format
One constant challenge of modern security will always be the difference between published and implemented specifications.
Reverse engineering software protections
Learn how to do in depth analysis of compressed and encrypted binary files.