WildFire Archives - Unit42

This image illustrates the concept of cybersquatting, a practice used by cybercriminals to take advantage of well-known domain names and brands.

30,158

people reacted

Cybersquatting: Attackers Mimicking Domains of Major Brands Including Facebook, Apple, Amazon and Netflix to Scam Consumers

By Zhanhao Chen and Janos Szurdi
September 1, 2020 at 3:00 AM

22

17 min. read

Conceptual image illustrating WastedLocker ransomware

30,347

people reacted

Threat Assessment: WastedLocker Ransomware

By Alex Hinchliffe, Doel Santos, Adrian McCabe and Robert Falcone
July 30, 2020 at 6:00 AM

9

4 min. read

A conceptual illustration showing a world map along with icons representing malware and other tools used by malicious actors

29,912

people reacted

OilRig Targets Middle Eastern Telecommunications Organization and Adds Novel C2 Channel with Steganography to Its Inventory

By Robert Falcone
July 22, 2020 at 6:00 AM

16

18 min. read

80,184

people reacted

Newly Registered Domains: Malicious Abuse by Bad Actors

By Zhanhao Chen, Jun Javier Wang and Kelvin Kwan
August 20, 2019 at 6:00 AM

34

12 min. read

20,052

people reacted

Pythons and Unicorns and Hancitor…Oh My! Decoding Binaries Through Emulation

By Jeff White
August 30, 2016 at 1:20 PM

2

11 min. read

Attack Delivers ‘9002’ Trojan Through Google Drive

By Robert Falcone and Jen Miller-Osborn
July 26, 2016 at 5:00 PM

2

8 min. read

Extending AutoFocus Threat Intelligence With New Tag Types

By Mike Scott
June 17, 2016 at 4:05 PM

0

6 min. read

The OilRig Campaign: Attacks on Saudi Arabian Organizations Deliver Helminth Backdoor

By Robert Falcone and Bryan Lee
May 26, 2016 at 2:05 PM

3

15 min. read

Prince of Persia: Infy Malware Active In Decade of Targeted Attacks

By Tomer Bar and Simon Conant
May 2, 2016 at 5:00 AM

0

10 min. read

Locky Ransomware Installed Through Nuclear EK

By Brad Duncan
March 21, 2016 at 1:00 PM

0

3 min. read

PowerSniff Malware Used in Macro-based Attacks

By Josh Grunzweig and Brandon Levene
March 11, 2016 at 1:00 PM

1

6 min. read

Banload Malware Affecting Brazil Exhibits Unusually Complex Infection Process

By Anthony Kasza
March 8, 2016 at 9:45 AM

0

7 min. read

New Android Trojan “Xbot” Phishes Credit Cards and Bank Accounts, Encrypts Devices for Ransom

By Cong Zheng, Claud Xiao and Zhi Xu
February 18, 2016 at 4:00 PM

1

7 min. read

Locky: New Ransomware Mimics Dridex-Style Distribution

By Brandon Levene, Micah Yates and Rob Downs
February 16, 2016 at 4:20 PM

0

4 min. read

NanoCoreRAT Behind an Increase in Tax-Themed Phishing E-mails

By Anthony Kasza
February 9, 2016 at 1:00 PM

0

6 min. read