Unit 42 - Latest Cyber Security Research

A boxing glove and hand raised to stop it illustrate the concept of cybersecurity adversaries.

3,813

people reacted

Introducing Actionable Threat Objects and Mitigations (ATOMs)

By Joseph Opacki
September 18, 2020 at 6:30 AM

5 min. read

12,780

people reacted

Threat Brief: Microsoft Vulnerability CVE-2020-1472 “Zerologon”

By Brandon Young and Mike Harbison
September 17, 2020 at 2:00 PM

< 1 min. read

The image illustrates the concept of cybersecurity trends, including network attack trends.

6,002

people reacted

Network Attack Trends: Attackers Leveraging High Severity and Critical Exploits

By Brock Mammen, Yue Guan and Yu Fu
September 15, 2020 at 6:00 AM

8 min. read

This illustrates the concept of container security.

6,405

people reacted

The Challenge of Persistence in Containers and Serverless

By Ariel Zelivansky
September 10, 2020 at 6:00 AM

6 min. read

An illustration of the concept of ransomware, including Thanos

14,591

people reacted

Thanos Ransomware: Destructive Variant Targeting State-Run Organizations in the Middle East and North Africa

By Robert Falcone
September 4, 2020 at 6:00 AM

13 min. read

This image illustrates the concept of a vulnerability.

10,799

people reacted

Exploits in the Wild for vBulletin Pre-Auth RCE Vulnerability CVE-2020-17496

By Haozhe Zhang, Qi Deng, Zhibin Zhang and Ruchna Nigam
September 3, 2020 at 12:00 PM

9 min. read

This image illustrates the concept of cybersquatting, a practice used by cybercriminals to take advantage of well-known domain names and brands.

13,994

people reacted

Cybersquatting: Attackers Mimicking Domains of Major Brands Including Facebook, Apple, Amazon and Netflix to Scam Consumers

By Zhanhao Chen and Janos Szurdi
September 1, 2020 at 3:00 AM

17 min. read

Cryptomining, as illustrated here, is one of the goals of Cetus, a cryptojacking worm.

9,747

people reacted

Cetus: Cryptojacking Worm Targeting Docker Daemons

By Aviv Sasson
August 27, 2020 at 6:00 AM

5 min. read

This conceptual image illustrates trends in cybersecurity

10,440

people reacted

The State of Exploit Development: 80% of Exploits Publish Faster than CVEs

By Jay Chen
August 26, 2020 at 6:00 AM

8 min. read

The word "Tutorial," superimposed over an image used in the Wireshark Tutorial series.

33,242

people reacted

Wireshark Tutorial: Decrypting HTTPS Traffic

By Brad Duncan
August 21, 2020 at 6:00 AM

7 min. read

This conceptual image represents Remote Access Trojans, such as the one examined here as an example of script-based malware.

18,120

people reacted

Script-Based Malware: A New Attacker Trend on Internet Explorer

By Edouard Bochin, Tao Yan, Jin Chen and Fang Liu
August 11, 2020 at 6:00 AM

10 min. read

The conceptual image illustrates the concept of ransomware.

20,967

people reacted

Threat Assessment: WastedLocker Ransomware Activities

By Alex Hinchliffe, Doel Santos, Adrian McCabe and Robert Falcone
July 30, 2020 at 6:00 AM

4 min. read

A conceptual image illustrating research into Kubernetes security.

25,114

people reacted

Kubernetes Vulnerability Puts Clusters at Risk of Takeover (CVE-2020-8558)

By Yuval Avrahami and Ariel Zelivansky
July 27, 2020 at 6:00 AM

7 min. read

19,299

people reacted

Evolution of Valak, from Its Beginnings to Mass Distribution

By Brad Duncan
July 24, 2020 at 12:00 PM

11 min. read

A conceptual illustration showing a world map along with icons representing malware and other tools used by malicious actors

22,224

people reacted

OilRig Targets Middle Eastern Telecommunications Organization and Adds Novel C2 Channel with Steganography to Its Inventory

By Robert Falcone
July 22, 2020 at 6:00 AM

18 min. read

Don’t Panic: COVID-19 Cyber Threats

Introducing Actionable Threat Objects and Mitigations (ATOMs)

Cloud Threats: Original Research and In-Depth Analysis

Don't Panic!: The Unit 42 Podcast

Introducing Actionable Threat Objects and Mitigations (ATOMs)

Threat Brief: Microsoft Vulnerability CVE-2020-1472 “Zerologon”

Network Attack Trends: Attackers Leveraging High Severity and Critical Exploits

The Challenge of Persistence in Containers and Serverless

Thanos Ransomware: Destructive Variant Targeting State-Run Organizations in the Middle East and North Africa

Exploits in the Wild for vBulletin Pre-Auth RCE Vulnerability CVE-2020-17496

Cybersquatting: Attackers Mimicking Domains of Major Brands Including Facebook, Apple, Amazon and Netflix to Scam Consumers

Cetus: Cryptojacking Worm Targeting Docker Daemons

The State of Exploit Development: 80% of Exploits Publish Faster than CVEs

Wireshark Tutorial: Decrypting HTTPS Traffic

Script-Based Malware: A New Attacker Trend on Internet Explorer

Threat Assessment: WastedLocker Ransomware Activities

Kubernetes Vulnerability Puts Clusters at Risk of Takeover (CVE-2020-8558)

Evolution of Valak, from Its Beginnings to Mass Distribution

OilRig Targets Middle Eastern Telecommunications Organization and Adds Novel C2 Channel with Steganography to Its Inventory

Popular Resources

Legal Notices

Account

Get updates on Unit 42

Trending

Popular Resources

Legal Notices

Account