(Are you) afreight of the dark? Watch out for Vyveva, new Lazarus backdoor
ESET researchers discover a new Lazarus backdoor deployed against a freight logistics firm in South Africa
Search results for: "lazarus"
Lazarus supply‑chain attack in South Korea
ESET researchers uncover a novel Lazarus supply-chain attack leveraging WIZVERA VeraPort software
Lazarus KillDisks Central American casino
The Lazarus Group gained notoriety especially after cyber-sabotage against Sony Pictures Entertainment in 2014. Fast forward to late 2017 and the group continues to deploy its malicious tools, including disk-wiping malware known as KillDisk, to attack a number of targets.
WannaCryptor attack ‘may have come from Lazarus group’
Experts in the UK and the US have reportedly claimed that the recent global WannaCryptor ransomware attack was initiated by the North Korean Lazarus Group.
ESET Threat Report T 1 2021
A view of the T 1 2021 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research experts
Threat Reports
ESET Threat Report T 1 2021
This issue of the ESET Threat Report provides an in-depth look at the threat landscape of the first four months of 2021, offering a breakdown of the latest global attack trends and statistics and providing unique insights to help defenders navigate the evolving and increasingly complex threat environment. This report also brings several exclusive ESET
Prime targets: Governments shouldn’t go it alone on cybersecurity
A year into the pandemic, ESET reveals new research into activities of the LuckyMouse APT group and considers how governments can rise to the cybersecurity challenges of the accelerated shift to digital
Week in security with Tony Anscombe
Janeleiro banking trojan takes aim at Brazil – Lazarus deploys Vyveva backdoor in South Africa – The long shelf life of leaked data
Supply‑chain attacks: When trust goes wrong, try hope?
How can organizations tackle the growing menace of attacks that shake trust in software?
ESET Threat Report Q4 2020
A view of the Q4 2020 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research experts
Operation NightScout: Supply‑chain attack targets online gaming in Asia
ESET researchers uncover a supply-chain attack used in a cyberespionage operation targeting online‑gaming communities in Asia
New warning issued over COVID‑19 vaccine fraud, cyberattacks
Cybercriminals look to cash in on the vaccine rollout, including by falsely offering to help people jump the line
Operation SignSight: Supply‑chain attack against a certification authority in Southeast Asia
ESET researchers have uncovered a supply-chain attack on the website of a government in Southeast Asia.
Week in security with Tony Anscombe
Lazarus takes aim at South Korea via an unusual supply-chain attack – The harsh reality of poor passwords – Bumble bitten by bugs
US gov’t warns against paying off ransomware attackers
Companies facilitating ransomware payments run the risk of facing stern penalties for violating US regulations
Operation In(ter)ception: Aerospace and military companies in the crosshairs of cyberspies
ESET researchers uncover targeted attacks against high-profile aerospace and military companies
White Papers
Operation In(ter)ception: Targeted attacks against European aerospace and military companies
ESET researchers uncover targeted attacks against several high-profile aerospace and military companies in Europe and the Middle East. While there is no compelling evidence connecting the attacks to a known threat actor, they discovered several hints suggesting a possible link to the Lazarus group, including similarities in targeting, development environment, and anti-analysis techniques used.
Mikroceen: Spying backdoor leveraged in high‑profile networks in Central Asia
ESET researchers dissect a backdoor deployed in attacks against multiple government agencies and major organizations operating in two critical infrastructure sectors in Asia
Ransomware vs. printing press? US newspapers face “foreign cyberattack”
Did malware disrupt newspaper deliveries in major US cities? Here’s what’s known about the incident so far and the leading suspect: Ryuk ransomware. Plus, advice on defending your organization against such attacks.
Money‑making machine: Monero‑mining malware
While far behind Bitcoin in market capitalization, Monero has several features that make it a very attractive cryptocurrency to be mined by malware.