Christian Funk

Lead Security Researcher, GReAT

Christian joined Kaspersky in 2007 and became a Junior Malware Analyst a year later. His specialist field is social networking sites and internet fraud. Since 2010, Christian has been a Virus Analyst for the company and has worked extensively with teams across Central Europe. Christian has a degree in Computer Technologies from the Ingolstadt University of Applied Sciences in Germany.

Reports

In this article, we discuss the tools and TTPs used in the SideWinder APT’s attacks in H2 2024, as well as shifts in its targets, such as an increase in attacks against the maritime and logistics sectors.

Kaspersky researchers analyze EAGERBEE backdoor modules, revealing a possible connection to the CoughingDown APT actor.

While investigating an incident involving the BellaCiao .NET malware, Kaspersky researchers discovered a C++ version they dubbed “BellaCPP”.

Lazarus targets employees of a nuclear-related organization with a bunch of malware, such as MISTPEN, LPEClient, RollMid, CookieTime and a new modular backdoor CookiePlus.

Christian Funk

Traps on the Internet

IT Threat Evolution: Q2 2013

Online gaming fraud: the evolution of the underground economy

Gaming the Security – The New Generation of Consoles

Summertime is Wireless Time

Publications

1st German Kaspersky Lab community workshop

Online gaming fraud: the evolution of the underground economy

The 101 hottest women in the world?

Need a Valentine’s gift?

Traps on the Internet

Summertime is Wireless Time

Reports

SideWinder targets the maritime and nuclear sectors with an updated toolset

EAGERBEE, with updated and novel components, targets the Middle East

BellaCPP: Discovering a new BellaCiao variant written in C++

Lazarus group evolves its infection chain with old and new malware

Subscribe to our weekly e-mails