Multi-stage APT attack drops Cobalt Strike using Malleable C2 feature

A newly discovered APT spear-phishing attack implements several evasion techniques to drop Cobalt Strike toolkit.

Read more

New LNK attack tied to Higaisa APT discovered

We describe a new spearphishing campaign tied to the potential North Korean Higaisa APT group.

Read more

New Mac variant of Lazarus Dacls RAT distributed via Trojanized 2FA app

The Lazarus group improves their toolset with a new RAT specifically designed for the Mac.

Read more

A week in security (April 27 – May 3)

A roundup of the previous week’s security news, including cloud data protection, Troldesh, VPNs, the cybercrime economy, and more.

Read more

APT36 jumps on the coronavirus bandwagon, delivers Crimson RAT

We look at a spear phishing attack from APT36, an Advanced Persistent Threat group posing as the government of India and offering guidance on coronavirus. Instead, users are infected with a Crimson RAT that steals data.

Read more

Securing the MSP: why they’re their own worst enemy

Behind each cyberattack on the MSP is typically a system left unpatched, asset management undone, security officer not hired, or board who sees investment in security as a cost center rather than a long-term investment.

Read more

A week in security (October 28 – November 3)

A roundup of the latest cybersecurity news for the week of October 28 – November 3, including cyberattacks against SMBs, the Internet’s 50th birthday, stalkerware, donation scams, and more.

Read more

Securing the managed service provider (MSP)

Managed service providers (MSPs) have become the target of attacks, as lack of aggressive security posturing has left them—and the high-value data of their clients—vulnerable. Learn how MSPs can secure against a rising tide of threats.

Read more

A week in security (September 30 – October 6)

A roundup of the latest cybersecurity news for the week of September 30 – October 6, including National Cybersecurity Awareness Month, Magecart, and more.

Read more

A week in security (August 19 – 25)

A roundup of the latest cybersecurity news for the week of August 19–25, including Magecart attacks on poker software, a new Bluetooth vulnerability, continuing ransomware attacks on US cities, Bitcoin sextortion, and a look back at one researcher’s DEF CON experience.

Read more

Select your language