Malware

Malware / Most Commented

What is ‘Pharming’ and Should You Be Worried?

Mar 15, 2005

The sky is falling! The sky is falling! ...or is it? What is this thing called "pharming"? Put simply, it's redirection of web traffic, so that the server you think you're talking to actually belongs to a criminal. For example: you think you're talking to www.examplebank.com because it says so in the browser's address bar, but actually you're connected to www.mafia-R-us.ru. This can happen in three main ways: 1. DNS Hijack: a social engineering attack on the Internet infrastructure... more

Industry Updates

Hunting for TimbreStealer Malware Artifacts in the DNS

A Peek at the PikaBot Infrastructure

A Log4Shell Malware Campaign in the DNS Spotlight

Unveiling Stealthy WailingCrab Aided by DNS Intelligence

DNS Abuse and Redirection: Enough for a New JS Malware to Hide Behind?

Decoy Dog, Too Sly to Leave DNS Traces?

A DNS Deep Dive Into Malware Crypting

A DNS Deep Dive: That VPN Service May Be OpcJacker in Disguise

SocGholish IoCs and Artifacts: Tricking Users to Download Malware

Malware Persistence versus Early Detection: AutoIT and Dridex IoC Expansion Analysis

A Call for Help May Lead to Malware: BazarCall IoC Analysis and Expansion

Eternity’s LilithBot, Soon Available to Regular Internet Users?

Alleviating BlackEnergy-Enabled DDoS Attacks

GALLIUM APT Group and Other Threat Actors in Disguise

Both Aged and New Domains Play a Role in the NDSW/NDSX Malware Campaign

View More