Tactics, Tools & Procedures
Cryptojacking Attack Targets Make-A-Wish Foundation
The Drupalgeddon 2 attack takes advantage of Drupal installations that have not patched CVE-2018-7600 and CVE-2018-7602, two vulnerabilities that have already been targeted this year ...
It’s Hard to Find Android Malware in the Google Play Store
The rate of malware actually on people’s devices does not match Android’s reputation for being a hellpit of malicious apps and activity ...
Lessons From the Equation Group: Situational Awareness and OpSec
Getting caught likely means creating new tradecraft, re-engineering and re-writing tools and re-training operators ...