Lab Matters

As part of our general information sharing activity, we have launched a series of webcasts on YouTube. I will be hosting a lot of them, so I thought I would let you know we’ve begun.

In this first webcast Costin and Magnus join me in discussing targeted attacks today – what they are, how to prevent them and how to mitigate if the attacks do succeed after all. Who should listen? Well, clearly IT staff for starters.

However, targeted attacks affect all of us – because the main attack vector is through social engineering This means that every single person employed by a company under attack – is a potential entry point.

So – take 5 minutes and listen to Costin, Magnus and myself and let us know what you think – was it useful? Do you have further questions? Do you have other topics you would like to hear about?

Lab Matters

Your email address will not be published.



APT trends report Q1 2022

This is our latest summary of advanced persistent threat (APT) activity, focusing on events that we observed during Q1 2022.

Lazarus Trojanized DeFi app for delivering malware

We recently discovered a Trojanized DeFi application that was compiled in November 2021. This application contains a legitimate program called DeFi Wallet that saves and manages a cryptocurrency wallet, but also implants a full-featured backdoor.

MoonBounce: the dark side of UEFI firmware

At the end of 2021, we inspected UEFI firmware that was tampered with to embed a malicious code we dub MoonBounce. In this report we describe how the MoonBounce implant works and how it is connected to APT41.

Subscribe to our weekly e-mails

The hottest research right in your inbox