Malspam, DoublePulsar and Hidden Tear ransomware
October 10, 2017
A new malspam campaign has been observed on October 6th 2017 spreading DoublePulsar via EternalBlue...
Malspam Delivers HWorm RAT October, 2017
October 9, 2017
On October 3rd, 2017 malspam delivered a malicious MS Word document containing obfuscated VBA code,...
MalSpam Delivers RAT SpyWare Quasar 9-27-2017
October 2, 2017
On September 27th, malspam delivered a malicious RTF document that tries to exploit Microsoft...
Coinhive for Monero Mining: who needs ads!?
September 26, 2017
Over the past several months, RSA FirstWatch has been avidly tracking the rise of crypto-currency...
Malspam delivers Jacksbot 9-23-2017
September 26, 2017
Malspam activity was noted on September 23rd 2017 delivering a Jacksbot variant to infected...
Malspam delivers Cobalt Strike payload 9-19-2017
September 25, 2017
Malspam activity was noted on September 19th 2017 delivering a Cobalt Strike payload. The malicious...
If it bleeds...we can kill it!
September 23, 2017
UPDATE: The functionality from the custom Lua parser described below is now available within the...
Malspam delivers MoonWind 9-20-2017
September 22, 2017
CVE-2017-8759 remains popular this week in malspam world with more malicious documents trying to...
Malspam and CVE-2017-8759
September 18, 2017
On September 12th FireEye security researchers disclosed information about CVE-2017-8759, a SOAP...
Monero miners: A NetWitness perspective
September 14, 2017
In our introductory post to Cryptocurrency, we mentioned that one of the threats to organizations...