Autumn leaves

27 Sep 2007

minute read

Authors

Costin Raiu

Today is the last day of the ISSE/Secure 2007 conference, which is taking place in the beautiful city of Warsaw. I gave the keynote speech at ISSE, along with Steve Lipner from Microsoft. My presentation was about the transition from viruses to malware and the rise of cybercrime, showing some of the latest tricks used by malware authors with a focus on the Zlob and Zhelatin worms.

Last week was busy as well. We attended the Virus Bulletin Conference in Vienna where Roel gave a talk on a particular variant of Banker, a family of trojans designed to steal your bank account details in a very crafty way.

While we were away, the malware activity was restricted to the usual stream of Mytob, Banload, Banker trojans and Pinch variants. The Zhelatin gang seems to have stopped their activity for a bit – they’re probably preparing a new wave of attacks.

And over here in Romania, the academic year is starting in a couple of days so we’re enjoying a few days of calm, before the ‘Storm’.

Authors

Costin Raiu

Autumn leaves

Latest Posts

Latest Webinars

Reports

The report features the most significant developments relating to APT groups in Q3 2024, including hacktivist activity, new APT tools and campaigns.

Kaspersky analyzes SideWinder APT’s recent activity: new targets in the MiddleEast and Africa, post-exploitation tools and techniques.

Kaspersky shares insights into the activity and TTPs of the BlindEagle APT, which targets organizations and individuals in Colombia, Ecuador, Chile, Panama and other Latin American countries.

Kaspersky has identified a new EastWind campaign targeting Russian organizations and using CloudSorcerer as well as APT31 and APT27 tools.

Autumn leaves

GReAT Ideas. Balalaika Edition

GReAT Ideas. Green Tea Edition

GReAT Ideas. Powered by SAS: malware attribution and next-gen IoT honeypots

GReAT Ideas. Powered by SAS: threat actors advance on new fronts

GReAT Ideas. Powered by SAS: threat hunting and new techniques

TOP 10 unattributed APT mysteries

Applied YARA training Q&A

PuzzleMaker attacks with Chrome zero-day exploit chain

Looking at Big Threats Using Code Similarity. Part 1

YARA webinar follow up

Black Hat USA 2022 and DEF CON 30

How we took part in MLSEC and (almost) won

Lyceum group reborn

Wake me up till SAS summit ends

Targeted Malware Reverse Engineering Workshop follow-up. Part 2

Latest Posts

Advanced threat predictions for 2025

Scammer Black Friday offers: Online shopping threats and dark web sales

Сrimeware and financial cyberthreats in 2025

Threats in space (or rather, on Earth): internet-exposed GNSS receivers

Latest Webinars

Inside the Dark Web: exploring the human side of cybercriminals

The Cybersecurity Buyer’s Dilemma: Hype vs (True) Expertise

Cybersecurity’s human factor – more than an unpatched vulnerability

Building and prioritizing detection engineering backlogs with MITRE ATT&CK

Reports

APT trends report Q3 2024

Beyond the Surface: the evolution and expansion of the SideWinder APT group

BlindEagle flying high in Latin America

EastWind campaign: new CloudSorcerer attacks on government organizations in Russia

Subscribe to our weekly e-mails