Matthieu Faou

ESET researchers shed light on new campaigns from the quiet Gelsemium group

ESET Research has found LuckyMouse, Tick, Winnti Group, and Calypso, among others, are likely using the recent Microsoft Exchange vulnerabilities to compromise email servers all around the world

ESET researchers have uncovered a supply-chain attack on the website of a government in Southeast Asia.

ESET researchers discover a new backdoor used by Turla to exfiltrate stolen documents to Dropbox

ESET researchers uncover a new APT group that has been stealing sensitive documents from several governments in Eastern Europe and the Balkans since 2011

ESET researchers analyze a previously undocumented trojan that is spread via malicious torrents and uses multiple tricks to squeeze cryptocoins from its victims while staying under the radar

Turla has updated its ComRAT backdoor and now uses the Gmail web interface for Command and Control

Can an old APT learn new tricks? Turla’s TTPs are largely unchanged, but the group recently added a Python backdoor.

ESET researchers analyze new TTPs attributed to the Turla group that leverage PowerShell to run malware in-memory only