Pulse VPN patched their vulnerability, but businesses are trailing behind

After a vulnerability in a popular business VPN solutions was discussed at length and an easy to use exploit is availbale, organizations still fail to apply the patch. What’s up?

Read more

Five years later, Heartbleed vulnerability still unpatched

The Heartbleed vulnerability was discovered and fixed in 2014, yet today—five years later—there are still unpatched systems.

Read more

The Hidden Bee infection chain, part 1: the stegano pack

The Hidden Bee cryptominer has a complex and multi-layered internal structure that is unusual among cybercrime toolkits. That’s why we’re dedicating a series of posts to exploring its elements and updates made during one year of its evolution.

Read more

A week in security (July 29 – August 4)

A roundup of security news from July 29 – August 4 including Capital One breach, Lord Exploit Kit, more Magecart skimming, ATM attacks, QR code scams, and Equifax payout.

Read more

Exploit kits: summer 2019 review

In this edition of our seasonal review of exploit kits, we review active and unique EKs hitting consumers and businesses over the summer 2019 season.

Read more

Hidden Bee: Let’s go down the rabbit hole

The complex and sophisticated custom malware, Hidden Bee, is a Chinese cryptominer that recently released an updated sample. We unpack the sample to look at the functionality of its loader and compare it against earlier versions.

Read more

Exploit kits: spring 2019 review

In this edition, we review active and unique exploit kits hitting consumers and businesses over the spring season.

Read more

Threats target financial institutions, fintech, and cryptocurrencies

Losing trust in financial institutions can have a disrupting effect on society. And malware authors love to target these direct sources of money. How can we protect them?

Read more

A week in security (February 11 – 17)

A roundup of security news from February 11-17 covering sextortion, Facebook phishing, Emotet, exploit kits, whole team security, anti-phishing plan, and lots more.

Read more

Exploit kits: winter 2019 review

We review the top exploit kits in this winter 2019 snapshot.

Read more

Select your language