Connexion
BladedFeline: Whispering in the dark
5 juin 2025 à 11:00
ESET researchers analyzed a cyberespionage campaign conducted by BladedFeline, an Iran-aligned APT group with likely ties to OilRig
Vue normale
Hier — 6 juin 2025Flux principal
À partir d’avant-hierFlux principal
Danabot: Analyzing a fallen empire
22 mai 2025 à 22:03
ESET Research shares its findings on the workings of Danabot, an infostealer recently disrupted in a multinational law enforcement operation
ESET takes part in global operation to disrupt Lumma Stealer
21 mai 2025 à 18:15
Our intense monitoring of tens of thousands of malicious samples helped this global disruption operation
ESET APT Activity Report Q4 2024–Q1 2025
19 mai 2025 à 10:55
An overview of the activities of selected APT groups investigated and analyzed by ESET Research in Q4 2024 and Q1 2025
Operation RoundPress
15 mai 2025 à 09:22
ESET researchers uncover a Russia-aligned espionage operation targeting webmail servers via XSS vulnerabilities
TheWizards APT group uses SLAAC spoofing to perform adversary-in-the-middle attacks
30 avril 2025 à 11:00
ESET researchers analyzed Spellbinder, a lateral movement tool used to perform adversary-in-the-middle attacks
You will always remember this as the day you finally caught FamousSparrow
26 mars 2025 à 15:45
ESET researchers uncover the toolset used by the FamousSparrow APT group, including two undocumented versions of the group’s signature backdoor, SparrowDoor
Operation FishMedley
20 mars 2025 à 11:00
ESET researchers detail a global espionage operation by FishMonger, the APT group run by I‑SOON
Shifting the sands of RansomHub’s EDRKillShifter
26 mars 2025 à 15:58
ESET researchers discover new ties between affiliates of RansomHub and of rival gangs Medusa, BianLian, and Play
Operation AkaiRyū: MirrorFace invites Europe to Expo 2025 and revives ANEL backdoor
18 mars 2025 à 11:00
ESET researchers uncovered MirrorFace activity that expanded beyond its usual focus on Japan and targeted a Central European diplomatic institute with the ANEL backdoor
Threat Report H2 2024: Infostealer shakeup, new attack vector for mobile, and Nomani
28 février 2025 à 11:00
Big shifts in the infostealer scene, novel attack vector against iOS and Android, and a massive surge in investment scams on social media
DeceptiveDevelopment targets freelance developers
20 février 2025 à 11:00
ESET researchers analyzed a campaign delivering malware bundled with job interview challenges
PlushDaemon compromises supply chain of Korean VPN service
22 janvier 2025 à 07:00
ESET researchers have discovered a supply-chain attack against a VPN provider in South Korea by a new China-aligned APT group we have named PlushDaemon
Under the cloak of UEFI Secure Boot: Introducing CVE-2024-7344
16 janvier 2025 à 11:00
The story of a signed UEFI application allowing a UEFI Secure Boot bypass
ESET Research Podcast: Telekopye, again
20 décembre 2024 à 11:00
Take a peek into the murky world of cybercrime where groups of scammers who go by the nickname of 'Neanderthals’ wield the Telekopye toolkit to ensnare unsuspecting victims they call 'Mammoths'
ESET Threat Report H2 2024
16 décembre 2024 à 11:00
A view of the H2 2024 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research experts
Bootkitty: Analyzing the first UEFI bootkit for Linux
27 novembre 2024 à 08:00
ESET researchers analyze the first UEFI bootkit designed for Linux systems
RomCom exploits Firefox and Windows zero days in the wild
26 novembre 2024 à 11:00
ESET Research details the analysis of a previously unknown vulnerability in Mozilla products exploited in the wild and another previously unknown Microsoft Windows vulnerability, combined in a zero-click exploit
Unveiling WolfsBane: Gelsemium’s Linux counterpart to Gelsevirine
21 novembre 2024 à 11:00
ESET researchers analyzed previously unknown Linux backdoors that are connected to known Windows malware used by the China-aligned Gelsemium group, and to Project Wood
