Resources

Filter By:
Threat Report
Formbook and Remcos Backdoor RAT
CRU Senior Threat Researcher Stu Gonzalez breaks down a payload the CRU captured in one of our spam traps. This was a Formbook payload that then downloaded the Remcos backdoor RAT.
security general icon
Cybersecurity
Threat Report
Initial Access Brokers
Successful cybercrime attacks often take groups of individuals working together. Some are extremely organized cybercrime syndicates such as the Conti group, but often individual criminals provide services to other criminals as vendors operating through a marketplace. Ransomware-as-a-Service (RaaS) or Botnet-as-a-Service (BaaS) providers regularly advertise their services on forums such as Exploit or XSS and setup affiliate programs. One type of service that can be found within the cybercrime ecosystem is the initial access broker (IAB).
security general icon
Cybersecurity
Threat Report
Follina - A New Microsoft Office 0-day RCE
Follina is a new remote code execution 0-day vulnerability in Microsft Office products.
security general icon
Cybersecurity
Threat Report
Patch Tuesday - May 2022
A brief overview of the latest security patches released by Microsoft including patches for 74 vulnerabilities; 7 are critical (2 elevation of privilege and 5 remote code execution), 66 are important, and 1 is rated as low.
security general icon
Cybersecurity
Threat Report
Threat Profile: REvil
Supplemental material for the 2022 MSP Threat Report.
security general icon
Cybersecurity
Threat Report
Threat Profile: Hive
Supplemental material for the 2022 MSP Threat Report.
security general icon
Cybersecurity
Threat Report
Threat Profile: Conti
Supplemental material for the 2022 MSP Threat Report.
security general icon
Cybersecurity
Threat Report
Threat Profile: LockBit
Supplemental material for the 2022 MSP Threat Report.
security general icon
Cybersecurity