Award-winning news, views, and insight from the ESET security community
Threat Reports, ESET Research
ESET APT Activity Report T2 2022
An overview of the activities of selected APT groups investigated and analyzed by ESET Research in T2 2022
Jean-Ian Boutin • 14 Nov 2022
ESET Research
Turla Crutch: Keeping the “back door” open
ESET researchers discover a new backdoor used by Turla to exfiltrate stolen documents to Dropbox
Matthieu Faou • 02 Dec 2020
From Agent.BTZ to ComRAT v4: A ten-year journey
Turla has updated its ComRAT backdoor and now uses the Gmail web interface for Command and Control
Matthieu Faou • 26 May 2020
ESET Threat Report Q1 2020
A view of the Q1 2020 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research experts
Roman Kováč • 29 Apr 2020
Tracking Turla: New backdoor delivered via Armenian watering holes
Can an old APT learn new tricks? Turla’s TTPs are largely unchanged, but the group recently added a Python backdoor.
Matthieu Faou • 12 Mar 2020
A dive into Turla PowerShell usage
ESET researchers analyze new TTPs attributed to the Turla group that leverage PowerShell to run malware in-memory only
Matthieu Faou and Romain Dumont • 29 May 2019
Turla LightNeuron: An email too far
ESET research uncovers Microsoft Exchange malware remotely controlled via steganographic PDF and JPG email attachments
Matthieu Faou • 07 May 2019
Turla: In and out of its unique Outlook backdoor
ESET research offers a rare glimpse into the mechanics of a particularly stealthy and resilient backdoor that the Turla cyberespionage group can fully control via PDF files attached to emails
Tomáš Foltýn • 22 Aug 2018
Turla Mosquito: A shift towards more generic tools
ESET researchers have observed a significant change in the campaign of the infamous espionage group
ESET Research • 22 May 2018
