Blog | ReversingLabs | Research (2)

Featured

April 17, 2024

Where GenAI intersects with threat modeling: 3 key benefits for AppSec

Generative AI can ease the burdens of threat modeling — and speed it up. But it's not a panacea. Here's what security teams can realistically expect.

April 16, 2024

OWASP's LLM AI Security & Governance Checklist: 13 action items for your team

The new checklist is organized into 13 areas of analysis. Here's what your security team needs to know about the most important points from each.

December 7, 2020

Rana Android Malware

Your past catches up, sooner or later...

November 16, 2020

PoorWeb - Hitching a Ride on Hangul

Tearing Down HWP Files To Expose a Trojan

September 22, 2020

Taidoor - a truly persistent threat

When malware lasts longer than your washing machine

September 8, 2020

Excel 4.0 Macros

The Risk of Hidden Threats in Compound Files

June 30, 2020

YARA is an important piece in the defenders chess set. Depending on how you play the game you can think of YARA as either a bishop or a rook. Powerful weapon in the hands of a threat hunter, or a layer that makes the defenders wall a bigger obstacle to overcome.

June 26, 2020

Five Uses of YARA

YARA is a useful member of the toolset of researchers, threat hunters, incident responder, and many other defenders.

June 23, 2020

Hidden Cobra - from a shed skin to the viper’s nest

Enriching public threat intelligence

June 5, 2020

Retread Ransomware

In March of 2020, MalwareHunterTeam discovered a downloader which installed both a KPot infostealer as well as a second payload which was a ransomware variant that used the string "CoronaVirus".

May 28, 2020

Spying on SpyNet

Using static analysis, it is possible to find out what the evolution of SpyNet looked like, how different versions can be found without even looking at the code, and how to find its authors so their future activities can be monitored.