Matthieu Faou

Malware

A dive into Turla PowerShell usage

ESET researchers analyze new TTPs attributed to the Turla group that leverage PowerShell to run malware in-memory only

Matthieu Faou and Romain Dumont 29 May 2019 - 11:30AM

Malware

Turla LightNeuron: An email too far

ESET research uncovers Microsoft Exchange malware remotely controlled via steganographic PDF and JPG email attachments

Matthieu Faou 7 May 2019 - 02:00PM

Malware

OceanLotus: New watering hole attack in Southeast Asia

ESET researchers identified 21 distinct websites that had been compromised including some particularly notable government and media sites

Matthieu Faou 20 Nov 2018 - 02:56PM

Malware

Supply‑chain attack on cryptocurrency exchange gate.io

Latest ESET research shows just how far attackers will go in order to steal bitcoin from customers of one specific virtual currency exchange

Matthieu Faou 6 Nov 2018 - 02:42PM

Vulnerability

PowerPool malware exploits ALPC LPE zero‑day vulnerability

Malware from newly uncovered group PowerPool exploits zero-day vulnerability in the wild, only two days after its disclosure

Matthieu Faou 5 Sep 2018 - 02:57PM

Cryptocurrency

Cryptocurrency web mining: In union there is profit

Cryptocurrency mining has been used by cybercriminals to make a quick and easy profit while corrupting the victim’s machine in the process.

Matthieu Faou 14 Sep 2017 - 02:53PM

Malware

Stantinko: A massive adware campaign operating covertly since 2012

Since the beginning of 2017, ESET has been conducting an investigation into a complex threat mainly targeting Russia and Ukraine. Stantinko has stood out.

Frédéric Vachon and Matthieu Faou 20 Jul 2017 - 03:00PM

Cybercrime

RTM: Stealthy group targeting remote banking system

Today, ESET has released a white paper on RTM, a cybercrime group that has been relentlessly targeting businesses in Russia and neighboring countries.

Jean-Ian Boutin and Matthieu Faou 21 Feb 2017 - 02:00PM