cybersecurity

Understanding PUA.Win64.ProcHack.AC: A Low-Risk Windows PUA Security Teams Should Monitor

News

Understanding PUA.Win64.ProcHack.AC: A Low-Risk Windows PUA Security Teams Should Monitor

Security teams should be aware of PUA.Win64.ProcHack.AC, a Potentially Unwanted Application (PUA) targeting Windows systems that represents...

Trojan.Win64.COMBACKER.YABA-A: Analyzing the Persistent Low-Risk Threat to Windows Systems

News

Trojan.Win64.COMBACKER.YABA-A: Analyzing the Persistent Low-Risk Threat to Windows Systems

Trojan.Win64.COMBACKER.YABA-A represents a persistent though low-risk threat to Windows systems, first identified in January 2021 by Trend...

Ransom.MSIL.THANOS.THABGBA: A Low-Prevalence but High-Impact Ransomware Threat

Malware Analysis

Ransom.MSIL.THANOS.THABGBA: A Low-Prevalence but High-Impact Ransomware Threat

Ransom.MSIL.THANOS.THABGBA is a ransomware strain targeting Windows systems, classified as a low-risk threat due to its limited...

Trojan.MacOS.SLISP.A: Analyzing the Stealthy macOS Threat Targeting Sensitive Data

News

Trojan.MacOS.SLISP.A: Analyzing the Stealthy macOS Threat Targeting Sensitive Data

Trojan.MacOS.SLISP.A (also known as SilverSparrow) represents a sophisticated macOS threat with concerning data exfiltration capabilities. First identified...

Trojan.Win64.HAFNIUM.A: Technical Analysis of the Microsoft Exchange Server Threat

Threat Intelligence

Trojan.Win64.HAFNIUM.A: Technical Analysis of the Microsoft Exchange Server Threat

The Trojan.Win64.HAFNIUM.A malware represents a sophisticated threat targeting Microsoft Exchange servers, initially attributed to the Chinese state-sponsored...

ASTROLOCKER Ransomware: Technical Analysis and Defense Strategies

Malware Analysis

ASTROLOCKER Ransomware: Technical Analysis and Defense Strategies

The Ransom.Win64.ASTROLOCKER.THCBDBA ransomware represents a moderate-risk threat with high damage potential, primarily targeting Windows environments. First documented...

RedLine Stealer Malware: Analyzing the MSIL.YXBDM Variant’s Data Theft Capabilities

Malware Analysis

RedLine Stealer Malware: Analyzing the MSIL.YXBDM Variant’s Data Theft Capabilities

TrojanSpy.MSIL.REDLINESTEALER.YXBDM represents a sophisticated information-stealing malware targeting Windows systems, first identified by Trend Micro researchers in April...

RedLine Stealer Malware: Analyzing the Persistent Data-Theft Threat Targeting Credentials

Malware Analysis

RedLine Stealer Malware: Analyzing the Persistent Data-Theft Threat Targeting Credentials

TrojanSpy.MSIL.REDLINESTEALER.YXBDN represents a sophisticated Windows-based information stealer with demonstrated capabilities in credential harvesting across multiple applications. First...

Ransom.Win32.SODINOKIBI.YABGC: Technical Analysis of a REvil Ransomware Variant Targeting Windows Systems

Malware Analysis

Ransom.Win32.SODINOKIBI.YABGC: Technical Analysis of a REvil Ransomware Variant Targeting Windows Systems

The ransomware variant Ransom.Win32.SODINOKIBI.YABGC (a member of the REvil/Sodinokibi family) poses a significant threat to Windows environments...

BLACKMATTER Ransomware Technical Analysis: Understanding Ransom.Win32.BLACKMATTER.THGOCBA

Malware Analysis

BLACKMATTER Ransomware Technical Analysis: Understanding Ransom.Win32.BLACKMATTER.THGOCBA

The ransomware strain Ransom.Win32.BLACKMATTER.THGOCBA presents a moderate-risk threat with significant operational impact potential, primarily targeting Windows environments....

Ransom.Win32.LOCKBIT.YEBGW: Technical Analysis and Mitigation Strategies

Blue-Team

Ransom.Win32.LOCKBIT.YEBGW: Technical Analysis and Mitigation Strategies

Ransom.Win32.LOCKBIT.YEBGW is a ransomware variant linked to the LockBit family, a group notorious for high-impact cyberattacks worldwide....

Trojan.Win32.KILLMBR.YECCA: Analyzing the MBR-Targeting Malware Threat

Malware Analysis

Trojan.Win32.KILLMBR.YECCA: Analyzing the MBR-Targeting Malware Threat

Trojan.Win32.KILLMBR.YECCA is a Windows-based Trojan with significant destructive potential despite its current low prevalence. First documented by...

Worm.Win32.HERMWIZ.YECCA: Low-Risk Worm with High Spread Potential

Malware Analysis

Worm.Win32.HERMWIZ.YECCA: Low-Risk Worm with High Spread Potential

Summary: Worm.Win32.HERMWIZ.YECCA is a low-risk but highly distributable worm targeting Windows systems. It spreads via malware-dropped files...

Technical Analysis of Ransom.Win32.LOCKBIT.YXCGD: A Low-Prevalence LockBit Variant

Malware Analysis

Technical Analysis of Ransom.Win32.LOCKBIT.YXCGD: A Low-Prevalence LockBit Variant

Summary: The ransomware variant Ransom.Win32.LOCKBIT.YXCGD (detected as Trojan-Ransom.BlackMatter by IKARUS and Ransom:Win32/Lockbit.STB by Microsoft) represents a low-risk...

Ransom.Win32.RTMCOMMAND.THKBFBD: Analyzing a Low-Risk but Potent Windows Ransomware Strain

Malware Analysis

Ransom.Win32.RTMCOMMAND.THKBFBD: Analyzing a Low-Risk but Potent Windows Ransomware Strain

Discovered in April 2023, Ransom.Win32.RTMCOMMAND.THKBFBD (also tracked as Ransom:Win32/RTMLocker.AA!MTB) is a Windows-specific ransomware strain with limited distribution...

Trojan.W97M.EMOTET.SMI: Analyzing the Persistent Emotet Threat Targeting Windows Systems

Malware Analysis

Trojan.W97M.EMOTET.SMI: Analyzing the Persistent Emotet Threat Targeting Windows Systems

Trojan.W97M.EMOTET.SMI is a variant of the notorious Emotet malware, primarily spread through malicious Microsoft Office documents. Despite...

Ransom.MSIL.EGOGEN.THEBBBC: Analyzing a Low-Risk but Persistent Ransomware Threat

Malware Analysis

Ransom.MSIL.EGOGEN.THEBBBC: Analyzing a Low-Risk but Persistent Ransomware Threat

Ransom.MSIL.EGOGEN.THEBBBC is a ransomware strain targeting Windows systems, classified as low-risk in terms of distribution but with...

Ransom.Win32.NOKO.THDABBC: Low-Risk Ransomware with Medium Damage Potential

Malware Analysis

Ransom.Win32.NOKO.THDABBC: Low-Risk Ransomware with Medium Damage Potential

Ransom.Win32.NOKO.THDABBC is a ransomware strain targeting Windows systems, classified as low risk due to its limited distribution...

Critical OpenSSH Vulnerabilities CVE-2024-6387 and CVE-2024-6409: Analysis and Mitigation Strategies

CVE News

Critical OpenSSH Vulnerabilities CVE-2024-6387 and CVE-2024-6409: Analysis and Mitigation Strategies

Two critical vulnerabilities in OpenSSH—CVE-2024-6387 (dubbed “regreSSHion”) and CVE-2024-6409—pose significant risks to Linux systems running vulnerable versions....

Ransom.Win32.SPOOSH.THGAGBC: A Low-Risk Ransomware with High Data Exfiltration Risks

Malware Analysis

Ransom.Win32.SPOOSH.THGAGBC: A Low-Risk Ransomware with High Data Exfiltration Risks

Ransom.Win32.SPOOSH.THGAGBC is a Windows-targeting ransomware strain first documented by Trend Micro in July 2023. While classified as...

Posts pagination

Previous 1 … 4 5 6 7 8 9 10 … 12 Next

cybersecurity

Understanding PUA.Win64.ProcHack.AC: A Low-Risk Windows PUA Security Teams Should Monitor

Trojan.Win64.COMBACKER.YABA-A: Analyzing the Persistent Low-Risk Threat to Windows Systems

Ransom.MSIL.THANOS.THABGBA: A Low-Prevalence but High-Impact Ransomware Threat

Trojan.MacOS.SLISP.A: Analyzing the Stealthy macOS Threat Targeting Sensitive Data

Trojan.Win64.HAFNIUM.A: Technical Analysis of the Microsoft Exchange Server Threat

ASTROLOCKER Ransomware: Technical Analysis and Defense Strategies

RedLine Stealer Malware: Analyzing the MSIL.YXBDM Variant’s Data Theft Capabilities

RedLine Stealer Malware: Analyzing the Persistent Data-Theft Threat Targeting Credentials

Ransom.Win32.SODINOKIBI.YABGC: Technical Analysis of a REvil Ransomware Variant Targeting Windows Systems

BLACKMATTER Ransomware Technical Analysis: Understanding Ransom.Win32.BLACKMATTER.THGOCBA

Ransom.Win32.LOCKBIT.YEBGW: Technical Analysis and Mitigation Strategies

Trojan.Win32.KILLMBR.YECCA: Analyzing the MBR-Targeting Malware Threat

Worm.Win32.HERMWIZ.YECCA: Low-Risk Worm with High Spread Potential

Technical Analysis of Ransom.Win32.LOCKBIT.YXCGD: A Low-Prevalence LockBit Variant

Ransom.Win32.RTMCOMMAND.THKBFBD: Analyzing a Low-Risk but Potent Windows Ransomware Strain

Trojan.W97M.EMOTET.SMI: Analyzing the Persistent Emotet Threat Targeting Windows Systems

Ransom.MSIL.EGOGEN.THEBBBC: Analyzing a Low-Risk but Persistent Ransomware Threat

Ransom.Win32.NOKO.THDABBC: Low-Risk Ransomware with Medium Damage Potential

Critical OpenSSH Vulnerabilities CVE-2024-6387 and CVE-2024-6409: Analysis and Mitigation Strategies

Ransom.Win32.SPOOSH.THGAGBC: A Low-Risk Ransomware with High Data Exfiltration Risks

You may have missed

Trump Administration Considers TikTok Deal Allowing Chinese Algorithm Ownership

How Intezer’s AI SOC Balances Automation with Human Expertise

How Security Platformization Improves Threat Response and Operational Efficiency

World Backup Day: Essential Strategies for Enterprise Data Protection