Varonis debuts trailblazing features for securing Salesforce. Learn More

Varonis named a Leader in The Forrester Wave™: Data Security Platforms, Q1 2023

Read the report
Data Security Threat Research Varonis Products Cloud Security Ransomware Active Directory Privacy & Compliance
View by category
Data Security Threat Research Varonis Products Cloud Security Ransomware Active Directory Privacy & Compliance

Blog / Threat Research (2)

Threat Research (2)

Hive Ransomware Analysis
Nadav Ovadia

Nadav Ovadia

Apr 19, 2022

Learn how Hive ransomware exploits public servers, spreads through your network, encrypts sensitive files, and exports victims for cryptocurrency.

Defending Your Cloud Environment Against LAPSUS$-style Threats
Nathan Coppinger

Nathan Coppinger

Mar 29, 2022

Varonis breaks down the recent LAPSUS$ hacks and provides best practices for defending your cloud environment against LAPSUS$ style threats

Is this SID taken? Varonis Threat Labs Discovers Synthetic SID Injection Attack
Eric Saraga

Eric Saraga

Mar 11, 2022

A technique where threat actors with existing high privileges can inject synthetic SIDs into an ACL creating backdoors and hidden permission grants.

ContiLeaks: Ransomware Gang Suffers Data Breach
Jason Hill

Jason Hill

Mar 04, 2022

Conti, a prolific ransomware group, has suffered a leak of both internal chat transcripts and source code being shared by a reported Ukrainian member

Ransomware Year in Review 2021
Varonis Threat Labs

Varonis Threat Labs

Feb 03, 2022

In this post, we dive into six ransomware trends that shaped 2021.

Using Power Automate for Covert Data Exfiltration in Microsoft 365
Eric Saraga

Eric Saraga

Feb 02, 2022

How threat actors can use Microsoft Power Automate to automate data exfiltration, C2 communication, lateral movement, and evade DLP solutions.

BlackCat Ransomware (ALPHV)
Jason Hill

Jason Hill

Jan 26, 2022

Varonis has observed the ALPHV (BlackCat) ransomware, actively recruiting new affiliates and targeting organizations across multiple sectors worldwide.

Mixed Messages: Busting Box’s MFA Methods
Tal Peleg

Tal Peleg

Jan 18, 2022

Varonis Threat Labs discovered a way to bypass multi-factor authentication (MFA) for Box accounts that use an SMS code for login verification.

Bypassing Box's Time-based One-Time Password MFA
Tal Peleg

Tal Peleg

Dec 02, 2021

The Varonis research team discovered a way to bypass Box's Time-based One-Time Password MFA for Box accounts that use authenticator applications.

No Time to REST: Check Your Jira Permissions for Leaks
Omri Marom

Omri Marom

Nov 17, 2021

Varonis researchers enumerated a list of 812 subdomains and found 689 accessible Jira instances. We found 3,774 public dashboards, 244 projects, and 75,629 issues containing email addresses, URLs, and IP...

Einstein's Wormhole: Capturing Outlook & Google Calendars via Salesforce Guest User Bug
Nitay Bachrach

Nitay Bachrach

Nov 02, 2021

If your organization uses Salesforce Communities and Einstein Activity Capture, you might have unknowingly exposed your administrator's Outlook or Google calendar events to the internet due to a bug called...

BlackMatter Ransomware: In-Depth Analysis & Recommendations
Dvir Sason

Dvir Sason

Nov 02, 2021

CISA has issued a security bulletin regarding the BlackMatter 'big game hunter' ransomware group following a sharp increase in cases targeting U.S. businesses. To mitigate these attacks, it is recommended...

Prev

1 2 3 4

Next

We're Varonis.
Our mission is to deliver meaningful security outcomes on autopilot.
No overhead. Just outcomes.  
Learn more