ESET Research

ESET Research

Latest Articles

ESET research

Sednit reloaded: Back in the trenches

Sednit reloaded: Back in the trenches

ESET research

DynoWiper update: Technical analysis and attribution

DynoWiper update: Technical analysis and attribution

ESET research

ESET Research: Sandworm behind cyberattack on Poland’s power grid in late 2025

ESET Research: Sandworm behind cyberattack on Poland’s power grid in late 2025

ESET research

MuddyWater: Snakes by the riverbank

MuddyWater: Snakes by the riverbank
625 articles by ESET Research

ESET research

Sednit reloaded: Back in the trenches

Sednit reloaded: Back in the trenches

ESET research

Sednit reloaded: Back in the trenches

The resurgence of one of Russia’s most notorious APT groups

ESET Research10 Mar 202612 min. read

ESET research

DynoWiper update: Technical analysis and attribution

DynoWiper update: Technical analysis and attribution

ESET research

DynoWiper update: Technical analysis and attribution

ESET researchers present technical details on a recent data destruction incident affecting a company in Poland’s energy sector

ESET Research30 Jan 202611 min. read

ESET research

ESET Research: Sandworm behind cyberattack on Poland’s power grid in late 2025

ESET Research: Sandworm behind cyberattack on Poland’s power grid in late 2025

ESET research

ESET Research: Sandworm behind cyberattack on Poland’s power grid in late 2025

The attack involved data-wiping malware that ESET researchers have now analyzed and named DynoWiper

ESET Research23 Jan 20262 min. read

ESET research

MuddyWater: Snakes by the riverbank

MuddyWater: Snakes by the riverbank

ESET research

MuddyWater: Snakes by the riverbank

MuddyWater targets critical infrastructure in Israel and Egypt, relying on custom malware, improved tactics, and a predictable playbook

ESET Research02 Dec 202520 min. read

Podcasts

ESET Threat Report H1 2025: ClickFix, infostealer disruptions, and ransomware deathmatch

ESET Threat Report H1 2025: ClickFix, infostealer disruptions, and ransomware deathmatch

Podcasts

ESET Threat Report H1 2025: ClickFix, infostealer disruptions, and ransomware deathmatch

Threat actors are embracing ClickFix, ransomware gangs are turning on each other – toppling even the leaders – and law enforcement is disrupting one infostealer after another

ESET Research05 Aug 20251 min. read

ESET research

ToolShell: An all-you-can-eat buffet for threat actors

ToolShell: An all-you-can-eat buffet for threat actors

ESET research

ToolShell: An all-you-can-eat buffet for threat actors

ESET Research has been monitoring attacks involving the recently discovered ToolShell zero-day vulnerabilities

ESET Research24 Jul 20253 min. read

Podcasts

ESET APT Activity Report Q4 2024–Q1 2025: Malware sharing, wipers and exploits

ESET APT Activity Report Q4 2024–Q1 2025: Malware sharing, wipers and exploits

Podcasts

ESET APT Activity Report Q4 2024–Q1 2025: Malware sharing, wipers and exploits

ESET experts discuss Sandworm’s new data wiper, relentless campaigns by UnsolicitedBooker, attribution challenges amid tool-sharing, and other key findings from the latest APT Activity Report

ESET Research01 Jul 20252 min. read

ESET research

BladedFeline: Whispering in the dark

BladedFeline: Whispering in the dark

ESET research

BladedFeline: Whispering in the dark

ESET researchers analyzed a cyberespionage campaign conducted by BladedFeline, an Iran-aligned APT group with likely ties to OilRig

ESET Research05 Jun 202525 min. read

ESET research

Threat Report H2 2024: Infostealer shakeup, new attack vector for mobile, and Nomani

Threat Report H2 2024: Infostealer shakeup, new attack vector for mobile, and Nomani

ESET research

Threat Report H2 2024: Infostealer shakeup, new attack vector for mobile, and Nomani

Big shifts in the infostealer scene, novel attack vector against iOS and Android, and a massive surge in investment scams on social media

ESET Research28 Feb 20251 min. read