RSS

Visual Basic 6 (VB6) Gaining popularity for Advanced Threat actors crafting APTs

Many of you are aware of how today’s drive-by infections have become more selective in victim targeting, more evasive with multiple-site redirection, and more signature-frustrating with obfuscation of Javascripts and […]

July 10, 2014 by Fengmin Gong

NightHunter data theft campaign building big data threats

Cyphort Labs discovered an extensive data theft campaign. It involves several different malware keyloggers, including Predator Pain, Limitless, Spyrex and others. The unifying feature is that they all use SMTP […]

July 9, 2014 by Nick Bilogorskiy

Sazoora: Dissecting the bundle of evasion and stealth

Last week Cyphort labs found a sample of Sazoora.B malware that is designed to evade sandbox-based analysis. We analyzed it thoroughly in our labs to understand its functioning. Here are […]

June 28, 2014 by Marion Marschalek

Analyzing VB6 Malware – Cyphort at Area41, Switzerland

Last week Cyphort Researchers attended Area41 conference in Zürich, Switzerland, a highly reputed European hacker conference. One of our researchers co-presented on a joint project together with Jurriaan Bremer, core […]

June 10, 2014 by Marion Marschalek

Dig deeper into the IE Vulnerability (CVE-2014-1776) exploit

Update: Webinar on this topic is on Thu 5/29/14. Registration details below Speaker: Marion Marschalek, Malware Analyst and Researcher Date and Time: Thursday, May 29, 2014 9:00 AM PDT Topic: Digging deeper […]

May 6, 2014 by Marion Marschalek

Men’s magazine website infected with malicious javascript, serving Miuref malware

A new malware infection was discovered on the popular website AskMen.com.

April 28, 2014 by Nick Bilogorskiy

See the Anti-SIEM in Action.

Schedule a live demo at your convenience, and we’ll present the detection, analytics, and mitigation capabilities of the platform.