Live Cyber Attack Lab 🎯 Watch our IR team detect & respond to a rogue insider trying to steal data! Choose a Session

X

Threat Detection

Articles

March 2021 Malware Trends Report

This report is a monthly round-up from the Varonis Forensics Team documenting activity observed while responding to incidents, performing forensics, and reverse engineering malware samples. This report is intended to...

Read More

Threat Update 31 – Now are the Zero Days of our Discontent

Have you ever wanted to get into a concert, or movie, but you couldn’t get a ticket? Probably not recently, but in this remote age, we’ve all experienced something similar...

Read More

Addressing New Federal IT Work From Home Risks

Over the past year, working from home has gone from a temporary necessity to the new normal for many industries. United States federal government and Department of Defense (DoD) workers...

Read More

Stack Memory: An Overview (Part 3)

Stack memory is a section in memory used by functions to store data such as local variables and parameters that will be used by the malware to perform its nefarious...

Read More

How to Use Autoruns to Detect and Remove Malware on Windows

Understanding how to use Autoruns means you may be able to detect if your home PC is infected with unwanted software. Note: This article is intended to illustrate how malware...

Read More

Watch: ReConnect – Ways Attackers Sidestep Your Endpoints

One of the age-old questions in cybersecurity is, “Are my endpoint controls enough?” Spoiler alert, unfortunately not! Kilian and Brian discuss scenarios we’ve seen where sophisticated attack groups deliberately leverage...

Read More

Return of the Darkside: Analysis of a Large-Scale Data Theft Campaign

Our team has recently led several high-profile investigations of attacks attributed to an up-and-coming cybercrime group, Darkside. These highly targeted campaigns were conducted in several phases over weeks or months,...

Read More

Threat Update 29 – Exchange Vulnerability Detection Tips & Tools

Many organizations are still dealing with the mass exploitation of on-prem Exchange servers from four Zero-Day vulnerabilities. Teams are struggling to identify and patch all of their affected servers, and...

Read More

Threat Update 28 – Re-Ryuk’ed & Exchange Zero-Day

Is it too soon for a 2020 throwback? The Ryuk ransomware gang certainly doesn’t think so! It looks like one of the premiere ransomware-as-a-service groups was not content to rest...

Read More

Watch: ReConnect – Version 8.5 and Combating Insider Risks in Microsoft 365

How do you visualize, measure, and reduce internal data exposure in Microsoft 365? What about detecting advanced threats like the SolarWinds attack? Kilian and Brian walk through the TL;DR version...

Read More
 

Does your cybersecurity start at the heart?

Get a highly customized data risk assessment run by engineers who are obsessed with data security.