Spam and phishing mail

Who’s №1?

If you’re looking for Internet security software online, you’ll see we’re right up there in the ratings. And it seems that we’re №1 with spammers too.

You might think we’d be happy to have our name all over this spam – pretty good advertising. But because we’re in the security business, we take a dim view of this type of thing: spam is criminal, spreads malware and hogs bandwidth. The link leads to a site selling all sorts of cheap (i.e. pirate) software:

This is advertising we don’t need. Sure, we want people to buy our product, because we know it’s good. And on a more banal note, yes, our product is our bread and butter.

You might save money buying a pirate version, but think of the consequences. You get a product which won’t work properly (leaving your computer at risk) and you’ll be egging the cybercriminals, malware writers and spammers on to new heights.

Who’s №1?

Your email address will not be published.



The SessionManager IIS backdoor

In early 2022, we investigated an IIS backdoor called SessionManager. It has been used against NGOs, government, military and industrial organizations in Africa, South America, Asia, Europe, Russia and the Middle East.

APT ToddyCat

ToddyCat is a relatively new APT actor responsible for multiple sets of attacks against high-profile entities in Europe and Asia. Its main distinctive signs are two formerly unknown tools that we call ‘Samurai backdoor’ and ‘Ninja Trojan’.

WinDealer dealing on the side

We have discovered that malware dubbed WinDealer, spread by Chinese-speaking APT actor LuoYu, has an ability to perform intrusions through a man-on-the-side attack.

APT trends report Q1 2022

This is our latest summary of advanced persistent threat (APT) activity, focusing on events that we observed during Q1 2022.

Subscribe to our weekly e-mails

The hottest research right in your inbox