An unknown threat actor have been specifically targeting German companies and citizens for several months with advanced phishing-style attacks. As already reported at the end of last year in our blog . . .
Over the past few months, Minerva Labs’ research team has received multiple alerts of possibly malicious code-unpacking from an executable named FlashHelperService.exe. We decided to investigate this . . .
Qbot (also known as Qakbot) is a notorious, widely spreading first stage malware, which is usually spread via malspam campaigns. Targeted victims receive mail with a malicious attachment that when . . .
Over the past couple of months Minerva Labs’ research team has received multiple alerts of possibly malicious code-unpacking from an executable named FlashHelperService.exe. We decided to investigate . . .
It seems like Trickbot’s creators are trying to up their game in 2021. A new version of BazarBackdoor is being distributed through a malicious Excel file that drops and executes BazarLoader. The new . . .
If you are anything like us, you love attending conferences. The expert panels, the opportunities to try out new technologies, network with others in the industry, the after-hours parties, the swag! . . .
As we turn the corner and begin 2021 (not a moment too soon) many people are breathing a sigh of relief, but security experts are still holding their breath. 2020 was a bumper year for ransomware . . .
Cryptojacking is a type of malware attack where threat actors use hijacked devices to illegally mine cryptocurrency. It is widely considered to be among the least invasive cyber security threats. . . .
The Minerva Labs Research team has recently encountered a resurgence in Rig exploit kit. This infamous exploit kit has been reportedly used by threat actors since 2015 (as reported by Trustwave). Our . . .
Ransomware attacks have become so common, it seems we hear about new and worse ones almost on a daily basis. So much so that the U.S. government is directly addressing the issue with a pair of new . . .