Lastline Labs Blog

Catching the Hacking Team’s System Access Token Thief Red-Handed

Posted by Lastline ON Jul 13, 2015

Authored by: Arunpreet Singh, Roman Vasilenko In their Youtube commercial, the infamous Hacking Team promises to their clients, who are typically government or law...

Unmasking Kernel Exploits

Posted by Lastline ON Jul 7, 2015

A large set of publicly disclosed Advanced Persistent Threat (APT) and nation state attacks use sophisticated malware (e.g Turla, Duqu,...

Exposing Rombertik – Turning the Tables on Evasive Malware

Posted by Lastline ON May 14, 2015

Authored by: Joe Giron, Clemens Kolbitsch Waves of evasive malware keep rolling in. The latest in the series: Rombertik. This malware...

Does Dyre malware play nice in your sandbox?

Posted by Clemens Kolbitsch ON May 8, 2015

Recent media coverage drew a lot of attention to a new variant of the Dyre/Dyreza malware family that is evading...

Labs Report at RSA: Evasive Malware’s Gone Mainstream

Posted by ON Apr 21, 2015

This afternoon at the RSA Conference in San Francisco, I will present on “Evasive Malware: Exposed and Deconstructed.” During that...

Malware in the Wild: Evolving to Evade Detection

Posted by Engin Kirda and Lastline ON Apr 15, 2015

Advanced malware is behind many headline-grabbing data breaches, and untold others. It has evolved to elude detection by sensing its...

Dissecting Turla Rootkit Malware Using Dynamic Analysis

Posted by Lastline ON Apr 8, 2015

Many of today’s advanced persistent threats have been climbing up the ladder - quite literally: Instead of only using user-mode...

High-Resolution Dynamic Analysis of Windows Kernel Rootkits

Posted by Clemens Kolbitsch ON Mar 17, 2015

Many recently-discovered sophisticated attacks against Windows users have been found to use at least one component executing in the kernel...

Carbanak Malware — Ninety Five Percent Exhibits Stealthy or Evasive Behaviors

Posted by ON Feb 19, 2015

We’ve talked a lot about the increasing sophistication of malware and the serious threats it poses. But it’s rare to...

Not so fast my friend – Using Inverted Timing Attacks to Bypass Dynamic Analysis

Posted by Lastline ON Nov 18, 2014

We're very happy that a lot of you are enjoying our research. If you'd like to discuss...

Lastline Labs Blog

Catching the Hacking Team’s System Access Token Thief Red-Handed

Unmasking Kernel Exploits

Exposing Rombertik – Turning the Tables on Evasive Malware

Does Dyre malware play nice in your sandbox?

Labs Report at RSA: Evasive Malware’s Gone Mainstream

Malware in the Wild: Evolving to Evade Detection

Dissecting Turla Rootkit Malware Using Dynamic Analysis

High-Resolution Dynamic Analysis of Windows Kernel Rootkits

Carbanak Malware — Ninety Five Percent Exhibits Stealthy or Evasive Behaviors

Not so fast my friend – Using Inverted Timing Attacks to Bypass Dynamic Analysis

LockerGoga: When Ransomware Strikes Back

Reporting from Security Analyst Summit 2019

Threat Actor “Cold River”: Network Traffic Analysis and a Deep Dive on Agent Drable

LATEST PRESS RELEASES

Is AI an Overhyped Gimmick? Lastline Co-founder, Dr. Giovanni Vigna, Will Explain at FS-ISAC Annual Summit

MEDIA MENTIONS

My Best Hires had 30% of “The Wrong Stuff”

FROM THE BLOG

Five High-Profile Watering Hole Attacks Highlight Importance of Network Security