Pillowmint: FIN7’s Monkey Thief
In this blog, we take an in-depth technical look at Pillowmint malware samples received from our ...
Read MoreCopy-Paste Threat Actor in the Asia Pacific Region
Summary Australian Prime Minister Australian Prime Minister Scott Morrison announced today that ...
Read MoreCisco WebEx Memory for the Taking: CVE-2020-3347
Overview Due to the global pandemic of COVID-19, there’s been an explosion of video conferencing ...
Read MoreTrickBot Disguised as COVID-19 Map
Cybercriminals are continuously exploiting the Coronavirus (COVID-19) pandemic. In our quest to ...
Read MorePatch Tuesday, June 2020
June's Patch Tuesday has crept upon us and while our minds may be elsewhere, the need to keep our ...
Read MoreCompromising Android Applications with Intent Manipulation
As a mobile app tester, I have encountered numerous varied vulnerabilities. During one of my mobile ...
Read MoreSystem Takeover Through New SAP ASE Vulnerabilities
For the last several years there have been relatively few security patches for SAP Adaptive Server ...
Read MoreSecuring SSH: What To Do and What Not To Do
An Uptick in Activity Over the last week we've seen the compromise of a number of supercomputers ...
Read MorePhishing in a Bucket: Utilizing Google Firebase Storage
Credential phishing is a real threat that's targeting organizations globally. Threat actors are ...
Read MoreVaccine for COVID-19 and Other Scams on the Dark Web
Our attempts to investigate the underground and document some of what’s going on in the Dark Web ...
Read MoreAzure Web App Service For Offensive Operations
In this blog, I will be covering how to use Azure App Services for offensive purposes. What is ...
Read MorePatch Tuesday, May 2020
May's Patch Tuesday includes patches for 111 unique CVEs. Of those CVEs 17 are rated "Critical" and ...
Read MoreWork From Home: The New New and What To Do
Here at SpiderLabs, we take the security of all our clients extremely seriously. While the attacks ...
Read MoreAttacking SCADA: Vulnerabilities in Schneider Electric SoMachine and M221 PLC (CVE-2017-6034 and CVE-2020-7489)
Introduction SCADA/OT security has been a growing concern for quite some time. This technology ...
Read MoreCombatting Social Engineering Is Not Just A Compliance Requirement
Having a well designed and tested social engineering training program for an organization is an ...
Read MoreExcel Malspam: Password Protected … Not!
Early March of this year, we blogged about multiple malspam campaigns utilizing Excel 4.0 Macros in ...
Read MoreCOVID-19 Themed BEC Scams
Business email compromise (BEC) also known as CEO fraud has undoubtedly become the biggest Internet ...
Read MorePatch Tuesday, April 2020
April's Patch Tuesday is here and Microsoft is patching 113 CVEs this month. Eighteen of these are ...
Read MoreAn In-depth Look at MailTo Ransomware, Part Three of Three
Overview In Part One of this series, we discussed how MailTo ransomware installs and configures ...
Read MoreAn In-depth Look at MailTo Ransomware, Part Two of Three
Overview In Part One of this series, we discussed how MailTo ransomware installs itself on the ...
Read MoreWindows Debugging and Exploiting Part 5 SMBGhost CVE-2020-0796 Technical Review
Introduction Hi everyone, how are you? I know the times are strange but we should fight together, ...
Read MoreAn In-depth Look at MailTo Ransomware, Part One of Three
In February, an Australian transportation company called Toll Group was hit by a ransomware attack ...
Read MoreCOVID-19 Malspam Activity Ramps Up
Back in February, we reported on two Coronavirus-themed phishing emails. But just as the real virus ...
Read MoreSMBGhost CVE-2020-0796 a Critical SMBv3 RCE Vulnerability
Overview Last week Microsoft announced that there was a buffer overflow vulnerability in SMBv3 ...
Read MoreModSecurity Award Nominations and the Challenges of Open Source
In the hustle and bustle of everyday work life we tend to look at the current issues we’re working ...
Read MorePersistent Cross-Site Scripting, the MSSQL Way
Overview If you save wide Unicode brackets (i.e. <>) into a char or varchar field, MSSQL Server ...
Read MoreMore Excel 4.0 Macro MalSpam Campaigns
In light of the recent blog by my colleague Rodel Mendrez, we looked back at previous spam ...
Read More