For years, payment card fraud has been extremely profitable for malicious actors. FireEye Labs has recently observed a Brazilian group that specializes in payment card fraud operations, using several methods to compromise and aquire already compromised payment card credientials.Read more...
Entries filed under 'Threat Research'
Threat Research Blog
The FireEye Labs team posts blog entries under threat research to present and discuss cyber attacks and threat intelligence from a technical perspective. They cover the full spectrum of exploits and vulnerabilities, including advanced malware and targeted threats.
October 7, 2016 8:00 AM By Muhammad Hasib Latif, Dr. Farrukh Shahzad | Threat Intelligence, Threat Research, Advanced Malware
Malware writers are always looking for new ways to evade analysis frameworks and sandboxes to successfully breach targeted environments and platforms. WMI provides a simple way of environment detection to evade sandboxes and dynamic analysis tools, which seem to be underestimated by the security community. This blog looks at evasion samples.Read more...
September 29, 2016 8:00 AM By FireEye iSIGHT Intelligence | Threat Intelligence, Threat Research
September 23, 2016 10:30 AM By Ankit Anubhav , Dileep Kumar Jallepalli | Threat Research, Advanced Malware
Hancitor uses several capabilities within malicious macros that support malware installation and data theft. These capabilities include leveraging uncommon APIs and obscuring malicious PowerShell commands, tactics that make it a challenge to detect.
August 26, 2016 11:45 PM By Daniel Regalado | Threat Research
FireEye Labs dissects a new ATM malware, RIPPER, which may have been used this week to steal 12 million baht from ATMs at banks in Thailand.Read more...