AutoFocus Archives

A conceptual image representing malware, such as the OutSteel and SaintBot payloads that were observed as part of an attack targeting Ukrainian organizations.

60,167

people reacted

Spear Phishing Attacks Target Organizations in Ukraine, Payloads Include the Document Stealer OutSteel and the Downloader SaintBot

By Unit 42
February 25, 2022 at 5:30 PM

21 min. read

A conceptual image representing THOR, a previously unseen PlugX variant deployed by the PKPLUG Group. The image features a Panda because PKPLUG is also known as Mustang Panda. It also features the logos of Palo Alto Networks and Unit 42.

84,590

people reacted

THOR: Previously Unseen PlugX Variant Deployed During Microsoft Exchange Server Attacks by PKPLUG Group

By Mike Harbison and Alex Hinchliffe
July 27, 2021 at 12:00 PM

13 min. read

Conceptual image illustrating WastedLocker ransomware

45,712

people reacted

Threat Assessment: WastedLocker Ransomware

By Alex Hinchliffe, Doel Santos, Adrian McCabe and Robert Falcone
July 30, 2020 at 6:00 AM

4 min. read

50,365

people reacted

Evolution of Valak, from Its Beginnings to Mass Distribution

By Brad Duncan
July 24, 2020 at 12:00 PM

11 min. read

A conceptual illustration showing a world map along with icons representing malware and other tools used by malicious actors

63,170

people reacted

OilRig Targets Middle Eastern Telecommunications Organization and Adds Novel C2 Channel with Steganography to Its Inventory

By Robert Falcone
July 22, 2020 at 6:00 AM

18 min. read

46,623

people reacted

HenBox: Inside the Coop

By Alex Hinchliffe, Mike Harbison, Jen Miller-Osborn and Tom Lancaster
April 26, 2018 at 5:00 AM

19 min. read

60,294

people reacted

HenBox: The Chickens Come Home to Roost

By Alex Hinchliffe, Mike Harbison, Jen Miller-Osborn and Tom Lancaster
March 13, 2018 at 5:00 AM

18 min. read

49,881

people reacted

Compromised Servers & Fraud Accounts: Recent Hancitor Attacks

By Vicky Ray and Brad Duncan
February 7, 2018 at 5:00 AM

7 min. read

101,028

people reacted

VERMIN: Quasar RAT and Custom Malware Used In Ukraine

By Juan Cortes and Tom Lancaster
January 29, 2018 at 5:00 AM

8 min. read

36,999

people reacted

Master Channel: The Boleto Mestre Campaign Targets Brazil

By Brad Duncan
December 7, 2017 at 5:00 AM

8 min. read

44,305

people reacted

The Blockbuster Saga Continues

By Anthony Kasza
August 14, 2017 at 5:00 AM

3 min. read

39,780

people reacted

Practice Makes Perfect: Nemucod Evolves Delivery and Obfuscation Techniques to Harvest Credentials

By Alex Hinchliffe
May 11, 2017 at 4:00 AM

25 min. read

48,656

people reacted

The Blockbuster Sequel

By Anthony Kasza and Micah Yates
April 7, 2017 at 5:00 AM

8 min. read

31,198

people reacted

Review of Regional Malware Trends in EMEA: Part 1

By Alex Hinchliffe
December 23, 2016 at 5:00 AM

10 min. read

Attack Delivers ‘9002’ Trojan Through Google Drive

By Robert Falcone and Jen Miller-Osborn
July 26, 2016 at 5:00 PM

8 min. read

Posts tagged with: AutoFocus

Spear Phishing Attacks Target Organizations in Ukraine, Payloads Include the Document Stealer OutSteel and the Downloader SaintBot

THOR: Previously Unseen PlugX Variant Deployed During Microsoft Exchange Server Attacks by PKPLUG Group

Threat Assessment: WastedLocker Ransomware

Evolution of Valak, from Its Beginnings to Mass Distribution

OilRig Targets Middle Eastern Telecommunications Organization and Adds Novel C2 Channel with Steganography to Its Inventory

HenBox: Inside the Coop

HenBox: The Chickens Come Home to Roost

Compromised Servers & Fraud Accounts: Recent Hancitor Attacks

VERMIN: Quasar RAT and Custom Malware Used In Ukraine

Master Channel: The Boleto Mestre Campaign Targets Brazil

The Blockbuster Saga Continues

Practice Makes Perfect: Nemucod Evolves Delivery and Obfuscation Techniques to Harvest Credentials

The Blockbuster Sequel

Review of Regional Malware Trends in EMEA: Part 1

Attack Delivers ‘9002’ Trojan Through Google Drive

Popular Resources

Legal Notices

Account

Trending

Popular Resources

Legal Notices

Account