Labs Archive

A Glimpse Into Future ScarCruft Campaigns Attackers Gather Strategic Intelligence And Target Cybersecurity Professionals 20

Advanced Persistent Threat

ScarCruft | Attackers Gather Strategic Intelligence and Target Cybersecurity Professionals

Aleksandar Milenkoski & Tom Hegel / January 22, 2024

New ScarCruft activity suggests the adversary is planning to target cybersecurity professionals and businesses.

LABScon

LABScon Replay | Send Lawyers, ‘Garchs, and Money

LABScon / January 18, 2024

From the Mueller report to the Steele Dossier, Liz Wharton explores the world of oligarch-funded lawyers and their attempts to discredit public research.

Crimeware

Exploring FBot | Python-Based Malware Targeting Cloud and Payment Services

Alex Delamotte / January 11, 2024

FBot arms threat actors with a multi-function attack tool designed to hijack cloud, Saas and web services.

Spectre Strikes Again Introducing The Firmware Edition 1

LABScon

LABScon Replay | Spectre Strikes Again: Introducing the Firmware Edition

LABScon / December 28, 2023

Binarly's CEO Alex Matrosov dives deep into the fascinating world of speculative attacks against System Management Mode (SMM) on AMD-based devices.

Intellexa And Cytrox From Fixer Upper To Intel Agency Grade Spyware 1

LABScon

LABSCon Replay | Intellexa and Cytrox: From Fixer-Upper to Intel Agency Grade Spyware

LABScon / December 26, 2023

Vitor Ventura breaks down the processes one spyware organization takes to develop fully working spyware using a one-click zero-day exploit.

Adversary

Gaza Cybergang | Unified Front Targeting Hamas Opposition

Aleksandar Milenkoski / December 14, 2023

Cluster of threat groups continues on trajectory to consolidate with shared victims, TTPs and evolving malware.

Advanced Persistent Threat

Sandman APT | China-Based Adversaries Embrace Lua

Aleksandar Milenkoski / December 11, 2023

SentinelLABS, Microsoft, and PwC threat intelligence researchers provide attribution-relevant information on the Sandman APT cluster.

The Cyber Arm Of Chinas Soft Power Reshaping A Continent 2

LABScon

LABScon Replay | The Cyber Arm of China’s Soft Power: Reshaping a Continent

LABScon / December 6, 2023

Tom Hegel explores China's influence in Africa and highlights an opportunity for broader understanding of global cyber threat landscapes.

Security Research

Decoding the Past, Securing the Future | Enhancing Cyber Defense with Historical Threat Intelligence

Tom Hegel / November 28, 2023

Explore how revisiting past cyber incidents can empower defenders and help to anticipate future threats more effectively.

Advanced Persistent Threat

Elephant Hunting | Inside an Indian Hack-For-Hire Group

Tom Hegel / November 16, 2023

Exploring the technical intricacies of Appin, a hack-for-hire group, revealing confirmed attribution and global threat activity, both old and new.