Unit 42 - Latest Cyber Security Research

This illustration represents the concept of malicious email, such as those involved in Emotet thread hijacking.

1,002

people reacted

Case Study: Emotet Thread Hijacking, an Email Attack Technique

By Brad Duncan
September 23, 2020 at 6:00 AM

5 min. read

A boxing glove and hand raised to stop it illustrate the concept of cybersecurity adversaries.

4,300

people reacted

Introducing Actionable Threat Objects and Mitigations (ATOMs)

By Joseph Opacki
September 18, 2020 at 6:30 AM

5 min. read

14,432

people reacted

Threat Brief: Microsoft Vulnerability CVE-2020-1472 “Zerologon”

By Brandon Young and Mike Harbison
September 17, 2020 at 2:00 PM

< 1 min. read

The image illustrates the concept of cybersecurity trends, including network attack trends.

6,297

people reacted

Network Attack Trends: Attackers Leveraging High Severity and Critical Exploits

By Brock Mammen, Yue Guan and Yu Fu
September 15, 2020 at 6:00 AM

8 min. read

This illustrates the concept of container security.

6,557

people reacted

The Challenge of Persistence in Containers and Serverless

By Ariel Zelivansky
September 10, 2020 at 6:00 AM

6 min. read

An illustration of the concept of ransomware, including Thanos

14,790

people reacted

Thanos Ransomware: Destructive Variant Targeting State-Run Organizations in the Middle East and North Africa

By Robert Falcone
September 4, 2020 at 6:00 AM

13 min. read

This image illustrates the concept of a vulnerability.

10,958

people reacted

Exploits in the Wild for vBulletin Pre-Auth RCE Vulnerability CVE-2020-17496

By Haozhe Zhang, Qi Deng, Zhibin Zhang and Ruchna Nigam
September 3, 2020 at 12:00 PM

9 min. read

This image illustrates the concept of cybersquatting, a practice used by cybercriminals to take advantage of well-known domain names and brands.

14,201

people reacted

Cybersquatting: Attackers Mimicking Domains of Major Brands Including Facebook, Apple, Amazon and Netflix to Scam Consumers

By Zhanhao Chen and Janos Szurdi
September 1, 2020 at 3:00 AM

17 min. read

Cryptomining, as illustrated here, is one of the goals of Cetus, a cryptojacking worm.

9,898

people reacted

Cetus: Cryptojacking Worm Targeting Docker Daemons

By Aviv Sasson
August 27, 2020 at 6:00 AM

5 min. read

This conceptual image illustrates trends in cybersecurity

10,595

people reacted

The State of Exploit Development: 80% of Exploits Publish Faster than CVEs

By Jay Chen
August 26, 2020 at 6:00 AM

8 min. read

The word "Tutorial," superimposed over an image used in the Wireshark Tutorial series.

33,672

people reacted

Wireshark Tutorial: Decrypting HTTPS Traffic

By Brad Duncan
August 21, 2020 at 6:00 AM

7 min. read

This conceptual image represents Remote Access Trojans, such as the one examined here as an example of script-based malware.

18,276

people reacted

Script-Based Malware: A New Attacker Trend on Internet Explorer

By Edouard Bochin, Tao Yan, Jin Chen and Fang Liu
August 11, 2020 at 6:00 AM

10 min. read

The conceptual image illustrates the concept of ransomware.

21,129

people reacted

Threat Assessment: WastedLocker Ransomware Activities

By Alex Hinchliffe, Doel Santos, Adrian McCabe and Robert Falcone
July 30, 2020 at 6:00 AM

4 min. read

A conceptual image illustrating research into Kubernetes security.

25,255

people reacted

Kubernetes Vulnerability Puts Clusters at Risk of Takeover (CVE-2020-8558)

By Yuval Avrahami and Ariel Zelivansky
July 27, 2020 at 6:00 AM

7 min. read

19,449

people reacted

Evolution of Valak, from Its Beginnings to Mass Distribution

By Brad Duncan
July 24, 2020 at 12:00 PM

11 min. read

Don’t Panic: COVID-19 Cyber Threats

Case Study: Emotet Thread Hijacking, an Email Attack Technique

Cloud Threats: Original Research and In-Depth Analysis

Don't Panic!: The Unit 42 Podcast

Case Study: Emotet Thread Hijacking, an Email Attack Technique

Introducing Actionable Threat Objects and Mitigations (ATOMs)

Threat Brief: Microsoft Vulnerability CVE-2020-1472 “Zerologon”

Network Attack Trends: Attackers Leveraging High Severity and Critical Exploits

The Challenge of Persistence in Containers and Serverless

Thanos Ransomware: Destructive Variant Targeting State-Run Organizations in the Middle East and North Africa

Exploits in the Wild for vBulletin Pre-Auth RCE Vulnerability CVE-2020-17496

Cybersquatting: Attackers Mimicking Domains of Major Brands Including Facebook, Apple, Amazon and Netflix to Scam Consumers

Cetus: Cryptojacking Worm Targeting Docker Daemons

The State of Exploit Development: 80% of Exploits Publish Faster than CVEs

Wireshark Tutorial: Decrypting HTTPS Traffic

Script-Based Malware: A New Attacker Trend on Internet Explorer

Threat Assessment: WastedLocker Ransomware Activities

Kubernetes Vulnerability Puts Clusters at Risk of Takeover (CVE-2020-8558)

Evolution of Valak, from Its Beginnings to Mass Distribution

Popular Resources

Legal Notices

Account

Get updates on Unit 42

Trending

Popular Resources

Legal Notices

Account