Threat research notebook
Fresh malware notes, phishing samples, scam redirects, ransomware observations, and field reports from Gridinsoft research. No gallery, no filler: date, case, finding, next read.
291 lab recordsRecent attacks on US military systems and Taiwan companies are distinctive not only by the brave target choosing, but also for the used toolkit. In the case of both targets, attackers used HiatusRAT as...
Wise Remote Stealer is a potent and malicious software that operates as an infostealer, Remote Access...
Today, in the constantly changing world of cyber threats, attackers always look for new ways to...
Over the past few months, researchers have been monitoring the activity of a Chinese threat actor...
Researchers have discovered a new form of malware called RedEnergy Stealer. It is categorized as Stealer-as-a-Ransomware but is not affiliated with the Australian company...
The forums on the dark web are well-known for being a hub of cybercriminal activity, including an auction system. Here, bad actors can trade...
It's no secret that cybercriminals are increasingly using mobile platforms as an attack vector lately. One example is a new Android malware. It spreads...
Windows Key Code Is Not Valid And Seems Pirated appears to be a new scary scam approach used to trick Windows users. Banners with...
Business email compromise (BEC) uses trusted mailboxes to steal data or money. Learn how BEC works, how real-estate wire fraud happens, and what to...
MDBotnet is a new malware strain that appears to be a backbone of a botnet, used in DDoS-as-a-Service attacks. Being a backdoor biassed towards...
Hackers started using GoDaddy Refund Emails as a disguise to trick the users into installing malware. In order to deploy the payload, they opted...
Researchers discovered Ducktail Malware, which targets individuals and organizations on the Facebook Business/Ads platform. The malware steals browser cookies and uses authenticated Facebook sessions...
Throughout the entire early May 2023, GridinSoft analysts team observed an anomalous activity of RedLine stealer. It is, actually, an activity different from what...
Fake Windows Update became a malware spreading way once again. Updates are a pretty routine part of the Windows user experience. Over the last...
LOBSHOT, a recently-detected malware family, appears to be a new strong player in the malware market. Carrying a combination of backdoor and spyware functionality,...
A new Domino Backdoor popped out at the beginning of 2023. Since February, a new malware family coined Domino is used for attack on...
Recent research from the CheckPoint Research team revealed a new ransomware sample that can potentially beat all samples currently present on the market. They...
BlackGuard, a prolific infostealer malware, received an update at the edge of 2023. The new update introduced advanced data-stealing capabilities and secure connectivity features....
As the main shopping event of the year approaches, Black Friday shopping scams have into view. Con actors from all over the world try...
TLS and HTTPS are related, but they are not the same thing. TLS is the encryption protocol that protects data in transit. HTTPS is...
