Lastline Labs Blog

Awakening Dormant Functionality in Malware Programs

Posted by Clemens Kolbitsch ON Aug 26, 2015

Authored by: Clemens Kolbitsch, Joe Giron, and Arunpreet Singh Over recent years, we have seen a rapid evolution of security products. Whenever a...

Turla: APT Group Gives Their Kernel Exploit a Makeover

Posted by Arunpreet Singh ON Jul 30, 2015

Authored by: Arunpreet Singh, Clemens Kolbitsch The Turla malware family is part of one of the most sophisticated malware families seen in...

Catching the Hacking Team’s System Access Token Thief Red-Handed

Posted by Arunpreet Singh ON Jul 13, 2015

Authored by: Arunpreet Singh, Roman Vasilenko In their Youtube commercial, the infamous Hacking Team promises to their clients, who are typically government or law...

Unmasking Kernel Exploits

Posted by Roman Vasilenko ON Jul 7, 2015

A large set of publicly disclosed Advanced Persistent Threat (APT) and nation state attacks use sophisticated malware (e.g Turla, Duqu,...

Exposing Rombertik – Turning the Tables on Evasive Malware

Posted by Joe Giron ON May 14, 2015

Authored by: Joe Giron, Clemens Kolbitsch Waves of evasive malware keep rolling in. The latest in the series: Rombertik. This malware...

Does Dyre malware play nice in your sandbox?

Posted by Clemens Kolbitsch ON May 8, 2015

Recent media coverage drew a lot of attention to a new variant of the Dyre/Dyreza malware family that is evading...

Labs Report at RSA: Evasive Malware’s Gone Mainstream

Posted by ON Apr 21, 2015

This afternoon at the RSA Conference in San Francisco, I will present on “Evasive Malware: Exposed and Deconstructed.” During that...

Malware in the Wild: Evolving to Evade Detection

Posted by Dr. Engin Kirda ON Apr 15, 2015

Advanced malware is behind many headline-grabbing data breaches, and untold others. It has evolved to elude detection by sensing its...

Dissecting Turla Rootkit Malware Using Dynamic Analysis

Posted by Arunpreet Singh ON Apr 8, 2015

Many of today’s advanced persistent threats have been climbing up the ladder - quite literally: Instead of only using user-mode...

High-Resolution Dynamic Analysis of Windows Kernel Rootkits

Posted by Clemens Kolbitsch ON Mar 17, 2015

Many recently-discovered sophisticated attacks against Windows users have been found to use at least one component executing in the kernel...

Lastline Labs Blog

Awakening Dormant Functionality in Malware Programs

Turla: APT Group Gives Their Kernel Exploit a Makeover

Catching the Hacking Team’s System Access Token Thief Red-Handed

Unmasking Kernel Exploits

Exposing Rombertik – Turning the Tables on Evasive Malware

Does Dyre malware play nice in your sandbox?

Labs Report at RSA: Evasive Malware’s Gone Mainstream

Malware in the Wild: Evolving to Evade Detection

Dissecting Turla Rootkit Malware Using Dynamic Analysis

High-Resolution Dynamic Analysis of Windows Kernel Rootkits

I Hash You: A Simple But Effective Trick to Evade Dynamic Analysis

From Russia(?) with Code

Olympic Destroyer: A new Candidate in South Korea

LATEST PRESS RELEASES

Lastline Breach Defender Named Enterprise Security Cutting Edge Winner in Cyber Defense Magazine’s InfoSec Awards

MEDIA MENTIONS

Ultrasonic Signals Are The Wild West Of Wireless Tech

FROM THE BLOG

RSA Hot Topic — IoT Security and Managing Unknown Devices