RSS

Multiple Malwares used to Target an Asian Financial Institution

Recently, Cyphort Labs received multiple malware samples that were used to target a financial institution in Asia. Due to an ongoing investigation, we will keep the company name anonymous. The source said, […]

June 2, 2015 by Paul Kimayong

Aggressive Malware Pushers: Prolific Cyber Surfers Beware

On April 19, Cyphort hardware sandbox trolled over a site www.49lou.com that served up 83 pieces of Windows executable files (EXE and DLL binaries) with zero user interaction.  By now, […]

May 13, 2015 by Fengmin Gong

DIY Chatroom and over a hundred forums injected with malware

Cyphort Labs discovered a malware campaign attacking over a hundred popular forum websites.  They are powered by outdated software so the vulnerability was likely used to compromise them, injecting the malware redirection […]

April 9, 2015 by Paul Kimayong

Bedep’s Cousin – Malvertising and Click Fraud

On March 27, Cyphort Labs discovered a piece of malware delivered through a Russian women fashion site (i6.igalya.ru). The malware contains a malicious payload for a click fraud campaign. The […]

April 6, 2015 by Abhijit Mohanta

Malvertising on DrudgeReport

On March 21, 2015 Cyphort Labs discovered that DrudgeReport.com website was serving malvertising and redirecting visitors to the Hanjuan Exploit Kit.  Multiple ad networks were used  in the redirect chain including AppNexus, Rubicon […]

April 3, 2015 by Nick Bilogorskiy

Babar’s Little Brother: Meet Casper The Friendly Ghost

Recent revelations about the alleged nation state malware Babar, along with the related Bunny malware and the Nbot family, have caused unrest in the research community. Now researchers at ESET […]

March 5, 2015 by Marion Marschalek

Clean.navy, DOD cleaning contractor’s website domain dirty, serves malware

On February 23 Cyphort Labs discovered that the website domain clean.navy is serving malware. Clean.navy subdomain is also used in a malvertising campaign via ad network adgoto.com. We have reported previously on a rising trend in drive-by […]

February 25, 2015 by Nick Bilogorskiy

Babar: Suspected Nation State Spyware In The Spotlight

Cyphort Labs has collected and analyzed a highly advanced piece of malware, which for all intents and purposes seems to be a full blown cyber espionage tool of the kind […]

February 18, 2015 by Marion Marschalek

Rolling Stone rollingstone.com.mx website serves malware during Grammys

Cyphort Labs discovered Rolling Stone magazine (Mexican edition) serving exploits from the Angler Kit on February 7, 2015 in the early morning. Rolling Stone is a bi-weekly magazine that focuses on […]

February 11, 2015 by Nick Bilogorskiy

See the Anti-SIEM in Action.

Schedule a live demo at your convenience, and we’ll present the detection, analytics, and mitigation capabilities of the platform.