Cybersecurity research, vulnerability analysis, and practical security insights.
The Rise of Cryptojacking Cryptojacking — the unauthorized use of someone else's computing resources to mine cryptocurrency — has exploded in popularity among cybercriminals. Unlike ransomware, which...
What is Virtual Machine Introspection? Virtual Machine Introspection (VMI) is a technique that allows analysis of a virtual machine's state from the hypervisor level. Unlike traditional malware...
Introduction Microsoft provides several HTML rendering engines and interpreters as part of the Windows operating system. Attackers have discovered that these legitimate tools can be weaponized to...
Introduction Dynamic Link Library (DLL) injection is a technique used by attackers to execute malicious code within the address space of another process. What makes this technique particularly...
Overview BadRabbit emerged on October 24, 2017, primarily targeting organizations in Russia, Ukraine, Turkey, and Germany. Unlike NotPetya's supply chain attack, BadRabbit relied on drive-by download...
Overview PowerShell is one of the most powerful tools available on Windows systems. Unfortunately, it has also become one of the most popular tools for attackers. While many security solutions...
Executive Summary On June 27, 2017, what initially appeared to be a variant of the Petya ransomware began spreading rapidly across networks worldwide. Dubbed "NotPetya" by researchers, this malware...