Lastline Labs Blog

Not so fast my friend – Using Inverted Timing Attacks to Bypass Dynamic Analysis

Posted by Arunpreet Singh ON Nov 18, 2014

We're very happy that a lot of you are enjoying our research. If you'd like to discuss...

The Malicious 1% of Ads Served

Posted by Giovanni Vigna ON Nov 14, 2014

Last week at IMC Vancouver 2014, cyber-security researcher Apostolis Zarras of Ruhr-University Bochum presented a research paper entitled “The Dark...

Rogue Online Pharmacies Use Fake Security Seals and Content Obfuscation to Deceive Humans and Programs

Posted by Giovanni Vigna ON Sep 17, 2014

New research being presented tomorrow at RAID 2014 demonstrates that just two signals can automatically and effectively detect hundreds of...

A Look at Advanced Targeted Attacks Through the Lense of a Human-Rights NGO, World Uyghur Congress

Posted by Dr. Engin Kirda ON Aug 12, 2014

In my capacity as an academic researcher at Northeastern University, I collaborated with computer scientists Stevens Le Blond, Adina Uritesc...

Exploit Analysis via Process Snapshotting

Posted by Roman Vasilenko ON Jul 29, 2014

In this third post in our blog series on process snapshotting (see previous posts on PlugX and Shiz’ code injection),...

Dissecting Payload Injection Using LLama Process Snapshots

Posted by Roman Vasilenko ON Jun 17, 2014

In our last blog-post on process snapshotting, we showed how process snapshots (or “dumps”) allow bridging the gap between dynamic...

An Analysis of PlugX Using Process Dumps from High-Resolution Malware Analysis

Posted by Roman Vasilenko ON Jun 5, 2014

Targeted attacks and so-called APTs (advanced persistent threats) come in many forms and colors. Very often, in-house malware analysis teams...

Analyzing an “Ultra-Advanced APT Tool” Using High-Resolution Dynamic Analysis

Posted by Clemens Kolbitsch ON May 30, 2014

Every AV I've tested is helpless against Violent Python attacks; the only good defense I've found is...

Detecting Keyloggers on Dynamic Analysis Systems

Posted by Clemens Kolbitsch ON May 28, 2014

Authored by: Kevin Hamacher, Dario Filho, Clemens Kolbitsch One notorious functionality present in many variants of today’s advanced malware is the ability...

Antivirus Isn’t Dead, It Just Can’t Keep Up

Posted by Giovanni Vigna ON May 21, 2014

Much has been said in recent weeks about the state of antivirus technology. To add facts to the debate, Lastline...

Lastline Labs Blog

Not so fast my friend – Using Inverted Timing Attacks to Bypass Dynamic Analysis

The Malicious 1% of Ads Served

Rogue Online Pharmacies Use Fake Security Seals and Content Obfuscation to Deceive Humans and Programs

A Look at Advanced Targeted Attacks Through the Lense of a Human-Rights NGO, World Uyghur Congress

Exploit Analysis via Process Snapshotting

Dissecting Payload Injection Using LLama Process Snapshots

An Analysis of PlugX Using Process Dumps from High-Resolution Malware Analysis

Analyzing an “Ultra-Advanced APT Tool” Using High-Resolution Dynamic Analysis

Detecting Keyloggers on Dynamic Analysis Systems

Antivirus Isn’t Dead, It Just Can’t Keep Up

When Malware is Packing Heat

Malware Evasion Techniques: Same Wolf – Different Clothing

Hacking and Malware Analysis Have More In Common Than You Think

LATEST PRESS RELEASES

Lastline Webinar on Fighting Ransomware Bolsters Educational Value of UK Security Serious Week

MEDIA MENTIONS

Manchester Police Still Using Old Windows XP

FROM THE BLOG

Protection from Malicious Links