Lastline Labs Blog

Turla: APT Group Gives Their Kernel Exploit a Makeover

Posted by Lastline ON Jul 30, 2015

Authored by: Arunpreet Singh, Clemens Kolbitsch The Turla malware family is part of one of the most sophisticated malware families seen in...

Catching the Hacking Team’s System Access Token Thief Red-Handed

Posted by Lastline ON Jul 13, 2015

Authored by: Arunpreet Singh, Roman Vasilenko In their Youtube commercial, the infamous Hacking Team promises to their clients, who are typically government or law...

Unmasking Kernel Exploits

Posted by Lastline ON Jul 7, 2015

A large set of publicly disclosed Advanced Persistent Threat (APT) and nation state attacks use sophisticated malware (e.g Turla, Duqu,...

Exposing Rombertik – Turning the Tables on Evasive Malware

Posted by Lastline ON May 14, 2015

Authored by: Joe Giron, Clemens Kolbitsch Waves of evasive malware keep rolling in. The latest in the series: Rombertik. This malware...

Does Dyre malware play nice in your sandbox?

Posted by Clemens Kolbitsch ON May 8, 2015

Recent media coverage drew a lot of attention to a new variant of the Dyre/Dyreza malware family that is evading...

Labs Report at RSA: Evasive Malware’s Gone Mainstream

Posted by ON Apr 21, 2015

This afternoon at the RSA Conference in San Francisco, I will present on “Evasive Malware: Exposed and Deconstructed.” During that...

Malware in the Wild: Evolving to Evade Detection

Posted by Engin Kirda and Lastline ON Apr 15, 2015

Advanced malware is behind many headline-grabbing data breaches, and untold others. It has evolved to elude detection by sensing its...

Dissecting Turla Rootkit Malware Using Dynamic Analysis

Posted by Lastline ON Apr 8, 2015

Many of today’s advanced persistent threats have been climbing up the ladder - quite literally: Instead of only using user-mode...

High-Resolution Dynamic Analysis of Windows Kernel Rootkits

Posted by Clemens Kolbitsch ON Mar 17, 2015

Many recently-discovered sophisticated attacks against Windows users have been found to use at least one component executing in the kernel...

Carbanak Malware — Ninety Five Percent Exhibits Stealthy or Evasive Behaviors

Posted by ON Feb 19, 2015

We’ve talked a lot about the increasing sophistication of malware and the serious threats it poses. But it’s rare to...

Lastline Labs Blog

Turla: APT Group Gives Their Kernel Exploit a Makeover

Catching the Hacking Team’s System Access Token Thief Red-Handed

Unmasking Kernel Exploits

Exposing Rombertik – Turning the Tables on Evasive Malware

Does Dyre malware play nice in your sandbox?

Labs Report at RSA: Evasive Malware’s Gone Mainstream

Malware in the Wild: Evolving to Evade Detection

Dissecting Turla Rootkit Malware Using Dynamic Analysis

High-Resolution Dynamic Analysis of Windows Kernel Rootkits

Carbanak Malware — Ninety Five Percent Exhibits Stealthy or Evasive Behaviors

HELO Winnti: Attack or Scan?

LockerGoga: When Ransomware Strikes Back

Reporting from Security Analyst Summit 2019

LATEST PRESS RELEASES

Lastline Named to Inc. 5000 List of Fastest Growing Private Companies for Second Consecutive Year

MEDIA MENTIONS

Misconfigured Containers Open Security Gaps

FROM THE BLOG

Stop Boiling the Ocean: Lastline Reduces Thousands of Alerts Down to a Handful of Real Intrusions