Live Cyber Attack Lab 🎯 Watch our IR team detect & respond to a rogue insider trying to steal data! Choose a Session

X

Threat Detection

Articles

Return of the Darkside: Analysis of a Large-Scale Data Theft Campaign

Our team has recently led several high-profile investigations of attacks attributed to an up-and-coming cybercrime group, Darkside. These highly targeted campaigns were conducted in several phases over weeks or months,...

Read More

Threat Update 29 – Exchange Vulnerability Detection Tips & Tools

Many organizations are still dealing with the mass exploitation of on-prem Exchange servers from four Zero-Day vulnerabilities. Teams are struggling to identify and patch all of their affected servers, and...

Read More

Threat Update 28 – Re-Ryuk’ed & Exchange Zero-Day

Is it too soon for a 2020 throwback? The Ryuk ransomware gang certainly doesn’t think so! It looks like one of the premiere ransomware-as-a-service groups was not content to rest...

Read More

Watch: ReConnect – Version 8.5 and Combating Insider Risks in Microsoft 365

How do you visualize, measure, and reduce internal data exposure in Microsoft 365? What about detecting advanced threats like the SolarWinds attack? Kilian and Brian walk through the TL;DR version...

Read More

February 2021 Malware Trends Report

This report is a monthly round-up from the Varonis Forensics Team documenting activity observed while responding to incidents, performing forensics, and reverse engineering malware samples. This report is intended to...

Read More

Threat Update 24 – Trickbot’s New Tricks & Recon Investigations

Who says you can’t teach an old attack new tricks? Apparently, the authors of the Trickbot malware think you can! Join Kilian Englert and Ryan O’Boyle from the Varonis Incident...

Read More

How Hackers Spoof DNS Requests With DNS Cache Poisoning

Domain Name Server (DNS) Spoofing is a cyber attack that tricks your computer into thinking it’s going to the correct website, but it’s not. Attackers use DNS cache poisoning to...

Read More

What is x64dbg + How to Use It

x64dbg is an open-source debugger for Windows that is a popular malware analysis tool. A debugger is used to step through code as it executes, so you can see exactly...

Read More

11 Best Malware Analysis Tools and Their Features

Malware has become a huge threat to organizations across the globe. Something as simple as opening an email attachment can end up costing a company millions of dollars if the...

Read More

Threat Update 22 – SolarWinds and DNS

The fallout from the SolarWinds incident continues to be a top-of-mind concern for many organizations, even for those not running the Orion platform due to the advanced nature of the...

Read More
 

Does your cybersecurity start at the heart?

Get a highly customized data risk assessment run by engineers who are obsessed with data security.