Varonis announces strategic partnership with Microsoft to accelerate the secure adoption of Copilot.

Learn more
Dolev Taler

Latest articles

microsoft NTLM leaks

Outlook Vulnerability Discovery and New Ways to Leak NTLM Hashes

Dolev Taler

Dolev Taler

Varonis Threat Labs discovered a new Outlook exploit and three new ways to access NTLM v2 hashed passwords.

Imposter Syndrome: UI Bug in Visual Studio Lets Attackers Impersonate Publishers

Dolev Taler

Dolev Taler

Varonis Threat Labs found a bug in Microsoft Visual Studio installer that allows an attacker to impersonate a publisher and issue a malicious extension to compromise a targeted system

The Logging Dead: Two Event Log Vulnerabilities Haunting Windows

Dolev Taler

Dolev Taler

You don’t have to use Internet Explorer for its legacy to have left you vulnerable to LogCrusher and OverLog, a pair of Windows vulnerabilities discovered by the Varonis Threat Labs team.

Exploiting BGInfo to Infiltrate a Corporate Network

Dolev Taler

Dolev Taler

This post details how a clever attacker can embed a path to a malicious script within a BGInfo config file (.bgi), bypass email security, and execute code remotely.

Varonis Exposes Global Cyber Campaign: C2 Server Actively Compromising Thousands of Victims

Dolev Taler

Dolev Taler

The Varonis Security Research team discovered a global cyber attack campaign leveraging a new strain of the Qbot banking malware. The campaign is actively targeting U.S. corporations but has hit networks...

Varonis Uncovers New Malware Strains and a Mysterious Web Shell During a Monero Crypto Jacking Investigation

Dolev Taler

Dolev Taler

The Varonis Security Research team recently investigated an ongoing cryptomining infection that had spread to nearly every device at a mid-size company. Analysis of the collected malware samples revealed a...

Varonis Uncovers Another New Strain of the Qbot Banking Malware

Dolev Taler

Dolev Taler

Varonis has discovered and reverse engineered another new strain of Qbot, a sophisticated, well-known type of malware that collects sensitive data, such as browser cookies, digital certificate information, keystrokes, credentials, and session data from its victims to commit financial fraud.

Try Varonis free.

Get a detailed data risk report based on your company’s data.
Deploys in minutes.