Protected: AnyDesk Malvertising — malware for system access
There is no excerpt because this is a protected post.
Tag
malware
Read the analysis
Agent Tesla — campaign of 20 May 2021
Agent Tesla campaign of 20 May 2021: spearphishing templates, dropper chain, exfiltration channels and host-level indicators for endpoint detection.
Ursnif Malware — Italian Tax Agency lure
Ursnif campaign abusing the Italian Tax Agency (Agenzia delle Entrate) brand as social-engineering lure: Italian-language phishing templates and host indicators.
PurpleFox: analysis of the compromise chain
PurpleFox malware framework: rootkit components, MSI installer abuse, exploit-driven worm capabilities and lateral movement patterns observed in Italian intrusions.
Security considerations — Cloud E-mail
Security trade-offs of moving corporate email to cloud platforms (Microsoft 365, Google Workspace): attack surface, account takeover patterns, MFA hardening and detection requirements.
Email: 5 tips to protect against attacks
Five practical guidelines to reduce exposure to email-borne threats: phishing, attachment macros, sender spoofing, MFA and user awareness — what works and what does not.
Ursnif Malware — behaviour and removal
Ursnif (Gozi/ISFB) banking trojan: persistence mechanisms, web-injection capabilities, command-and-control patterns and remediation steps for infected hosts.
Ursnif — attacks in Italy
Ursnif campaigns aimed at Italian organisations: phishing lures in Italian, payload delivery patterns and C2 hosting trends observed across multiple waves.
FortPot — attacks from the network
Insights from FortPot honeynet sensors: scanning waves, exploitation attempts on exposed services, automated brute-force trends and ASN-level intelligence.
