FirstWatch Threat Spotlight: WhisperGate and Rise of Data Wipers
August 19, 2022
Authors: Rajas Save (@RajasSave) and Sarthak Duggal (@Sarthak) Introduction In mid-January,...
FirstWatch Threat Spotlight – QuasarRAT
August 17, 2022
Authors: Darren McCutchen, Jeeth Mathai, Manoj Pilli Background: QuasarRAT is an open-source .NET...
No Laughing Matter: Using NetWitness EDR to Detect SysJoker
July 29, 2022
In December of 2021, Intezer discovered a novel multi-platform malware[i]. Dubbed SysJoker, this...
Agent Tesla: The Information Stealer
June 17, 2022
What is Agent Tesla? Agent Tesla is a spyware Trojan written for the .NET framework that has been...
Atlassian Confluence Zero-day Vulnerability (0-Zero) CVE-2022-26134: What You Need To Know
June 3, 2022
Introduction Volexity, industry-leading incident response and forensics firm based out of Reston,...
Introducing NetWitness Platform XDR v12.0
June 3, 2022
A New Name and a Major Release! NetWitness will soon release NetWitness Platform XDR v12.0 for...
‘Follina’ CVE-2022-30190 0-Day: What You Need To Know
June 2, 2022
‘Follina’ CVE-2022-30190 0-Day: What You Need To Know On May 27, 2022, the NAO Security Cyber...
CVE-2022-1388: BIG-IP iControl REST RCE Vulnerability
May 27, 2022
Netwitness Content Discussed ioc: exploit attempt F5 CVE-2022-1388 Background: On May 4, 2022, F5...
Ragnar Locker Ransomware: The Rampage Continues…
May 25, 2022
Background Ragnar Locker is a ransomware gang that made its global debut around late 2019, early...
Ransomware Email Attacks: Beware of BazarLoader
May 20, 2022
What is BazarLoader? Bazar malware infections are specifically targeting professional services,...