Lastline Labs Blog

Tales From the Field: The Surge of Agent Tesla

Posted by Labs Team ON Aug 28, 2018

While it is normal to see a positive trend in terms of number of artifacts analyzed by our engines, a...

Equation Editor — evading static analysis FI

Evading Static Analyzers by Solving the Equation (Editor)

Posted by Subrat Sarkar and Stefano Ortolani ON Jul 12, 2018

Introduction As part of our efforts to self-evaluate our backend systems, we closely monitor the behavioral reports produced by our dynamic...

Evasive Monero Miners: Deserting the Sandbox for Profit

Posted by Alexander Sevtsov and Stefano Ortolani ON Jun 20, 2018

Authored by: Alexander Sevtsov Edited by: Stefano Ortolani Introduction It’s not news that the cryptocurrency industry is on the rise. Mining crypto coins offers to...

APT28 Rollercoaster: The Lowdown on Hijacked LoJack

Posted by David Wells, Stefano Ortolani, Andy Norton and Luukas Larinkoski ON May 31, 2018

Recently, the ASERT team at Arbor Networks, published a report on an old version of the Absolute Software product, Absolute...

A Wild Port Scan Appears. What now?

Posted by Alessandro Quaranta, Luukas Larinkoski and Stefano Ortolani ON May 9, 2018

Introduction During the RSA 2018 conference, Lastline launched Breach Defender, a new solution to facilitate the analysis of suspicious anomalies in...

I Hash You: A Simple But Effective Trick to Evade Dynamic Analysis

Posted by Alexander Sevtsov ON Apr 10, 2018

Authored by: Alexander Sevtsov Edited by: Stefano Ortolani Apparently “Every new day is new evasion trick day” is a valid motto for...

From Russia(?) with Code

Posted by Labs Team ON Mar 9, 2018

The Olympic Destroyer cyberattack is a very recent and notable attack by sophisticated threat actors against a globally renowned 2-week...

Olympic Destroyer: A new Candidate in South Korea

Posted by Alexander Sevtsov and Stefano Ortolani ON Feb 21, 2018

Authored by: Alexander Sevtsov Edited by: Stefano Ortolani A new malware has recently made the headlines, targeting several computers during the opening...

Trust Me, I am a Screen Reader, not a CryptoMiner

Posted by Stefano Ortolani ON Feb 11, 2018

Until late Sunday afternoon, a number of public sector websites including ICO, NHS, and local councils (for example, Camden in...

Smoke Loader Campaign: When Defense Becomes a Numbers Game

Posted by Alexander Sevtsov and Stefano Ortolani ON Feb 1, 2018

Authored by Alexander Sevtsov Edited by Stefano Ortolani Introduction Everybody knows that PowerShell is a powerful tool to automate different tasks in Windows....

Lastline Labs Blog

Tales From the Field: The Surge of Agent Tesla

Evading Static Analyzers by Solving the Equation (Editor)

Evasive Monero Miners: Deserting the Sandbox for Profit

APT28 Rollercoaster: The Lowdown on Hijacked LoJack

A Wild Port Scan Appears. What now?

I Hash You: A Simple But Effective Trick to Evade Dynamic Analysis

From Russia(?) with Code

Olympic Destroyer: A new Candidate in South Korea

Trust Me, I am a Screen Reader, not a CryptoMiner

Smoke Loader Campaign: When Defense Becomes a Numbers Game

Tales From the Field: The Surge of Agent Tesla

Evading Static Analyzers by Solving the Equation (Editor)

Evasive Monero Miners: Deserting the Sandbox for Profit

LATEST PRESS RELEASES

Lastline Ranks Among Top 10 Security Companies on the 2018 Inc. 5000 List of America’s Fastest-Growing Private Companies

MEDIA MENTIONS

Bristol Airport Admits Cyber Attack Impacted Flight Display Screens

FROM THE BLOG

Digital Threat Assessment by the U.S. Intelligence Community