CVE-2024-11477: 7-Zip Flaw Allows Remote Code Execution
On November 20th, 2024, Zero Day Initiative (ZDI) researchers disclosed a critical flaw in 7-Zip.
Read MoreStay Informed
Sign up to receive the latest security news and trends straight to your inbox from Trustwave.
Rockstar 2FA Phishing-as-a-Service (PaaS): Noteworthy Email Campaigns
Welcome to the second part of our investigation into the Rockstar kit, please check out part one ...
Read MoreRockstar 2FA: A Driving Force in Phishing-as-a-Service (PaaS)
Trustwave SpiderLabs has been actively monitoring the rise of Phishing-as-a-Service (PaaS) ...
Read MoreLessons from a Honeypot with US Citizens’ Data
Prior to last week’s US Presidential Election, the Trustwave SpiderLabs team was hard at work ...
Read More2024 Trustwave Risk Radar Report: Cyber Threats to the Retail Sector
As the holiday shopping season approaches, the 2024 Trustwave Risk Radar Report: Retail Sector ...
Read MoreHow Threat Actors Conduct Election Interference Operations: An Overview
The major headlines that arose from the three most recent US presidential election cycles ...
Read MoreFeline Hackers Among Us? (A Deep Dive and Simulation of the Meow Attack)
Introduction In the perpetually evolving field of cybersecurity, new threats materialize daily. ...
Read MorePronsis Loader: A JPHP-Driven Malware Diverging from D3F@ck Loader
Trustwave's Threat Intelligence team has discovered a new malware dubbed Pronsis Loader, with its ...
Read MoreWhat We Know So Far About Zero-Day CUPS Vulnerabilities: CVE-2024-47176, CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177
On September 26, 2024, security researcher Simone Margaritellidisclosed the details of four ...
Read MoreHTML Smuggling: How Blob URLs are Abused to Deliver Phishing Content
HTML smuggling techniques have been around for quite some time. A previous Trustwave SpiderLabs’ ...
Read MoreSpam With A Political Twist: Fraudsters Are Exploiting The Election Season
The US election is less than 70 days away and threat actors are busy crafting malicious spam that ...
Read MoreTrustwave SpiderLabs Research: 20% of Ransomware Attacks in Financial Services Target Banking Institutions
The 2024 Trustwave Risk Radar Report: Financial Services Sector underscores the escalating threat ...
Read MoreExploring an Experimental Windows Kernel Rootkit in Rust
Around two years ago, memN0ps took the initiative to create one of the first publicly available ...
Read MoreHypervisor Development in Rust for Security Researchers (Part 1)
In the ever-evolving field of information security, curiosity and continuous learning drive ...
Read MoreExposed and Encrypted: Inside a Mallox Ransomware Attack
Recently, a client enlisted the support of Trustwave to investigate an unauthorized access incident ...
Read MoreSearch & Spoof: Abuse of Windows Search to Redirect to Malware
Trustwave SpiderLabs has detected a sophisticated malware campaign that leverages the Windows ...
Read MoreFake Dialog Boxes to Make Malware More Convincing
Let’s explore how SpiderLabs created and incorporated user prompts, specifically Windows dialog ...
Read More