Threat Research

June 5, 2020

Retread Ransomware

Identifying Satana to Understand "CoronaVirus"

Read More about Retread Ransomware

Retread Ransomware

May 28, 2020

Spying on SpyNet

Malware is like a constantly evolving open-source project.

Read More about Spying on SpyNet

Spying on SpyNet

April 16, 2020

Mining for Malicious Ruby Gems

Typosquatting barrage on RubyGems software repository users

Read More about Mining for Malicious Ruby Gems

Mining for Malicious Ruby Gems

April 2, 2020

Hawkish applications lurking in your MacOS environment

macOS Blog 4 of 5: Catching the Proton Backdoor in your Video

Read More about Hawkish applications lurking in your MacOS environment

Hawkish applications lurking in your MacOS environment

March 25, 2020

Unpacking the Kwampirs RAT

Exposing Attack Campaigns, Hunting Threats and Delivering Actionable Threat Intelligence

Read More about Unpacking the Kwampirs RAT

Unpacking the Kwampirs RAT

March 23, 2020

Exposing Ryuk Variants Using YARA

Getting Ahead of Ryuk attacks using YARA Rules - Continued

Read More about Exposing Ryuk Variants Using YARA

Exposing Ryuk Variants Using YARA

March 6, 2020

Sneaky Tools Infiltrating Your Mac Fortress

macOS Blog 3 of 5: Potentially Unwanted Apps Masquerade as Well Behaved Applications D

Read More about Sneaky Tools Infiltrating Your Mac Fortress

Sneaky Tools Infiltrating Your Mac Fortress

February 14, 2020

Reminiscence of the Flashback

macOS Blog 2 of 5: Mac Flashback malware remains relevant

Read More about Reminiscence of the Flashback

Reminiscence of the Flashback

February 7, 2020

Is Your macOS Safe from Attack - What 2019 has Shown Us

macOS Blog 1 of 5: Treat macOS like any other potentially vulnerable asset

Read More about Is Your macOS Safe from Attack - What 2019 has Shown Us

Is Your macOS Safe from Attack - What 2019 has Shown Us

January 31, 2020

RATs in the Library

Remote Access Trojans Hide in Plain “Public” Site

Read More about RATs in the Library

RATs in the Library

December 23, 2019

When Malware RATs on their Owners

Uncovering configurations for malicious Remote Administration Tools

Read More about When Malware RATs on their Owners

When Malware RATs on their Owners

December 17, 2019

The Hunt for NTCrypt: Exposing a Malicious Packer

Researchers demonstrate how threat hunting with Titanium Platform accelerates their analysis

Read More about The Hunt for NTCrypt: Exposing a Malicious Packer

The Hunt for NTCrypt: Exposing a Malicious Packer

December 13, 2019

Going Behind the Scenes of Cybercrime Group FIN6’s Attack On Retail and Hospitality

See how ReversingLabs delivers the actionable insights needed for threat hunters to find attacks related to a FIN6 reverse shell

Read More about Going Behind the Scenes of Cybercrime Group FIN6’s Attack On Retail and Hospitality

Going Behind the Scenes of Cybercrime Group FIN6’s Attack On Retail and Hospitality

October 30, 2019

Breaking the UEFI firmware Authenticode security model

Blog 8 in series: Digital Certificates - Models for Trust and Targets for Misuse

Read More about Breaking the UEFI firmware Authenticode security model

Breaking the UEFI firmware Authenticode security model

October 30, 2019

Breaking the Windows Authenticode security model

Blog 7 in series: Digital Certificates - Models for Trust and Targets for Misuse

Read More about Breaking the Windows Authenticode security model

Breaking the Windows Authenticode security model