“Funky malware format” found in Ocean Lotus sample

Recently, one of our researchers presented at the SAS conference on “Funky malware formats”—atypical executable formats used by malware that are only loaded by proprietary loaders. In this post, we analyze one of those formats in a sample called Ocean Lotus from the APT 32 threat group in Vietnam.

Read more

A week in security (January 7 – 13)

A roundup of last week’s security news from January 7 to 13, including breaches, takedowns, bug fixes, and social media issues.

Read more

Unpacking the spyware disguised as antivirus

Recently we got access to several elements of the espionage toolkit that has been captured attacking Vietnamese institutions. During the operation, the malware was used to dox 400,000 members of Vietnam Airlines.

Read more

Select your language