<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=116645602292181&amp;ev=PageView&amp;noscript=1">
Go

The Timeline to Consolidation of Endpoint Protection Platforms and EDR
Endpoint Detection and Response

The Timeline to Consolidation of Endpoint Protection Platforms and EDR

The endpoint security market is in the midst of a consolidation of EDR and EPP. How did we get here? Read on to find out.

Sep 25, 2019
Read More

Fileless Malware 101: Understanding Non-Malware Attacks
Malware

Fileless Malware 101: Understanding Non-Malware Attacks

Unlike attacks carried out using traditional malware, fileless malware attacks don’t entail attackers installing software on a victim’s machine. Instead, tools that are built-in to Windows are hijacked by adversaries and used to carry out attacks. Essentially, Windows is turned against itself.

Sep 17, 2019
Read More

Explaining Fileless Malware Succinctly with Examples from our Research
Antivirus

Explaining Fileless Malware Succinctly with Examples from our Research

In Q1 2018, fileless attacks were up 94%. Learn about what fileless malware is with common examples from the Cybereason Nocturnus team's research.

Sep 16, 2019
Read More

Glupteba Expands Operation and Toolkit with LOLBins And Cryptominer
LOLbins

Glupteba Expands Operation and Toolkit with LOLBins And Cryptominer

The Nocturnus team has identified variants of Glupteba that made use of an extensive arsenal, including LOLBins and a cryptocurrency miner.

Sep 12, 2019
Read More

Sodinokibi: The Crown Prince of Ransomware
Research

Sodinokibi: The Crown Prince of Ransomware

In April 2019, the Cybereason Nocturnus team analyzed a new type of evasive ransomware dubbed Sodinokibi.

Aug 5, 2019
Read More

Exploit Kits “Shade” Into New Territory
LOLbins

Exploit Kits “Shade” Into New Territory

We take a closer look at the Spelevo exploit, its infection method, and the new direction attackers are taking the Shade ransomware to make money while avoiding publicity.

Jul 23, 2019
Read More

Watch Where You Browse - The Fallout Exploit Kit Stays Active
Vulnerabilities

Watch Where You Browse - The Fallout Exploit Kit Stays Active

Attackers are turning even the most common activities into a possible threat. Read about the latest example of this trend here.

Jul 3, 2019
Read More

Operation Soft Cell: A Worldwide Campaign Against Telecommunications Providers
Advanced Persistent Threat

Operation Soft Cell: A Worldwide Campaign Against Telecommunications Providers

In 2018, the Cybereason Nocturnus team identified an advanced, persistent attack targeting global telecommunications providers.

Jun 25, 2019
Read More

Adobe Worm Faker Uses LOLbins And Dynamic Techniques To Deliver Customized Payloads
Vulnerabilities

Adobe Worm Faker Uses LOLbins And Dynamic Techniques To Deliver Customized Payloads

We have found an active malware that uses LOLBins and delivers customized payloads called Adobe Worm Faker.

Jun 20, 2019
Read More

New Pervasive Worm Exploiting Linux Exim Server Vulnerability
Cybersecurity

New Pervasive Worm Exploiting Linux Exim Server Vulnerability

There’s an active, ongoing campaign exploiting a widespread vulnerability in linux email servers. Read about the attack first here.

Jun 13, 2019
Read More