Brad Duncan, Author at Unit42

The word "Tutorial," superimposed over an image used in the Wireshark Tutorial series.

11,024

people reacted

Wireshark Tutorial: Examining Emotet Infection Traffic

By Brad Duncan
January 19, 2021 at 6:00 AM

15 min. read

The image represents malicious email campaigns, such as TA551, often push a variety of malware, such as Valak and IcedID.

14,914

people reacted

TA551: Email Attack Campaign Switches from Valak to IcedID

By Brad Duncan
January 7, 2021 at 12:01 AM

9 min. read

This conceptual image illustrates the concept of ransomware, such as the Ryuk ransomware discussed in this article

26,578

people reacted

Threat Assessment: Ryuk Ransomware and Trickbot Targeting U.S. Healthcare and Public Health Sector

By Brittany Barbehenn, Doel Santos and Brad Duncan
October 29, 2020 at 5:45 PM

9 min. read

23,347

people reacted

Wireshark Tutorial: Examining Dridex Infection Traffic

By Brad Duncan
October 23, 2020 at 9:00 AM

12 min. read

This illustration represents the concept of malicious email, such as those involved in Emotet thread hijacking.

32,411

people reacted

Case Study: Emotet Thread Hijacking, an Email Attack Technique

By Brad Duncan
September 23, 2020 at 6:00 AM

5 min. read

81,969

people reacted

Wireshark Tutorial: Decrypting HTTPS Traffic

By Brad Duncan
August 21, 2020 at 6:00 AM

101

7 min. read

25,281

people reacted

Evolution of Valak, from Its Beginnings to Mass Distribution

By Brad Duncan
July 24, 2020 at 12:00 PM

11 min. read

28,075

people reacted

Goodbye Mworm, Hello Nworm: TrickBot Updates Propagation Module

By Brad Duncan
May 28, 2020 at 12:00 PM

7 min. read

15,433

people reacted

GuLoader: Malspam Campaign Installing NetWire RAT

By Brad Duncan
April 3, 2020 at 6:00 AM

6 min. read

29,901

people reacted

Wireshark Tutorial: Examining Qakbot Infections

By Brad Duncan
February 13, 2020 at 6:00 AM

9 min. read

34,640

people reacted

Wireshark Tutorial: Examining Ursnif Infections

By Brad Duncan
December 23, 2019 at 6:00 AM

14 min. read

22,153

people reacted

Trickbot Updates Password Grabber Module

By Brad Duncan
November 22, 2019 at 12:25 PM

4 min. read

53,642

people reacted

Wireshark Tutorial: Examining Trickbot Infections

By Brad Duncan
November 8, 2019 at 6:00 AM

10 min. read

50,396

people reacted

MyDoom Still Active in 2019

By Brad Duncan
July 26, 2019 at 6:00 AM

6 min. read

79,866

people reacted

Wireshark Tutorial: Exporting Objects from a Pcap

By Brad Duncan
July 10, 2019 at 6:00 AM

10 min. read

Posts created by: Brad Duncan

Wireshark Tutorial: Examining Emotet Infection Traffic

TA551: Email Attack Campaign Switches from Valak to IcedID

Threat Assessment: Ryuk Ransomware and Trickbot Targeting U.S. Healthcare and Public Health Sector

Wireshark Tutorial: Examining Dridex Infection Traffic

Case Study: Emotet Thread Hijacking, an Email Attack Technique

Wireshark Tutorial: Decrypting HTTPS Traffic

Evolution of Valak, from Its Beginnings to Mass Distribution

Goodbye Mworm, Hello Nworm: TrickBot Updates Propagation Module

GuLoader: Malspam Campaign Installing NetWire RAT

Wireshark Tutorial: Examining Qakbot Infections

Wireshark Tutorial: Examining Ursnif Infections

Trickbot Updates Password Grabber Module

Wireshark Tutorial: Examining Trickbot Infections

MyDoom Still Active in 2019

Wireshark Tutorial: Exporting Objects from a Pcap

Popular Resources

Legal Notices

Account

Trending

Popular Resources

Legal Notices

Account