Brad Duncan, Author at Unit 42

Conceptual image representing phishing, including the way Bumblebee malware is distributed, as discussed here

21,787

people reacted

Flight of the Bumblebee: Email Lures and File Sharing Services Lead to Malware

By Brad Duncan
August 3, 2022 at 12:00 PM

8 min. read

A conceptual image representing phishing - one of the primary delivery methods for Emotet malware, covered here.

37,053

people reacted

Emotet Summary: November 2021 Through January 2022

By Brad Duncan
May 17, 2022 at 6:00 AM

13 min. read

A conceptual image representing phishing, such as the research on a new Emotet infection method covered here.

46,421

people reacted

New Emotet Infection Method

By Saqib Khanzada, Tyler Halfpop, Micah Yates and Brad Duncan
February 15, 2022 at 6:00 AM

5 min. read

A conceptual image representing malware, such as the BazarLoader windows-based malware discussed here.

50,168

people reacted

Case Study: From BazarLoader to Network Reconnaissance

By Brad Duncan
October 18, 2021 at 6:00 AM

7 min. read

A conceptual image representing Wireshark Tutorials.

64,058

people reacted

Wireshark Tutorial: Wireshark Workshop Videos Now Available

By Brad Duncan
October 1, 2021 at 6:00 AM

2 min. read

A conceptual image representing cybercrime, such as the way that BazarCall uses call centers for BazarLoader malware

51,774

people reacted

BazarCall Method: Call Centers Help Spread BazarLoader Malware

By Brad Duncan
May 19, 2021 at 4:00 PM

9 min. read

43,346

people reacted

Wireshark Tutorial: Examining Traffic from Hancitor Infections

By Brad Duncan
April 7, 2021 at 6:00 AM

20 min. read

Malicious email, as depicted here, can be the starting point of a chain of events related to Hancitor infections, which have recently been observed distributing Cobalt Strike and using a noisy network ping tool.

39,558

people reacted

Hancitor’s Use of Cobalt Strike and a Noisy Network Ping Tool

By Brad Duncan
April 1, 2021 at 12:00 PM

11 min. read

64,039

people reacted

Wireshark Tutorial: Decrypting RDP Traffic

By Brad Duncan and Vijay Prakash
April 1, 2021 at 6:00 AM

10 min. read

63,180

people reacted

Wireshark Tutorial: Examining Emotet Infection Traffic

By Brad Duncan
January 19, 2021 at 6:00 AM

15 min. read

The image represents malicious email campaigns, such as TA551, often push a variety of malware, such as Valak and IcedID.

44,155

people reacted

TA551: Email Attack Campaign Switches from Valak to IcedID

By Brad Duncan
January 7, 2021 at 12:01 AM

9 min. read

Conceptual image illustrating Ryuk Ransomware

47,514

people reacted

Threat Assessment: Ryuk Ransomware

By Brittany Barbehenn, Doel Santos and Brad Duncan
October 29, 2020 at 5:45 PM

9 min. read

45,488

people reacted

Wireshark Tutorial: Examining Dridex Infection Traffic

By Brad Duncan
October 23, 2020 at 9:00 AM

12 min. read

This illustration represents the concept of malicious email, such as those involved in Emotet thread hijacking.

55,597

people reacted

Case Study: Emotet Thread Hijacking, an Email Attack Technique

By Brad Duncan
September 23, 2020 at 6:00 AM

5 min. read

310,541

people reacted

Wireshark Tutorial: Decrypting HTTPS Traffic

By Brad Duncan
August 21, 2020 at 6:00 AM

153

7 min. read

Posts created by: Brad Duncan

Flight of the Bumblebee: Email Lures and File Sharing Services Lead to Malware

Emotet Summary: November 2021 Through January 2022

New Emotet Infection Method

Case Study: From BazarLoader to Network Reconnaissance

Wireshark Tutorial: Wireshark Workshop Videos Now Available

BazarCall Method: Call Centers Help Spread BazarLoader Malware

Wireshark Tutorial: Examining Traffic from Hancitor Infections

Hancitor’s Use of Cobalt Strike and a Noisy Network Ping Tool

Wireshark Tutorial: Decrypting RDP Traffic

Wireshark Tutorial: Examining Emotet Infection Traffic

TA551: Email Attack Campaign Switches from Valak to IcedID

Threat Assessment: Ryuk Ransomware

Wireshark Tutorial: Examining Dridex Infection Traffic

Case Study: Emotet Thread Hijacking, an Email Attack Technique

Wireshark Tutorial: Decrypting HTTPS Traffic

Popular Resources

Legal Notices

Account

Trending

Popular Resources

Legal Notices

Account