Weekly Intelligence Trends and Advisory – 25 July 2021

Researchers highlight that an increasing number of ransomware groups are using virtual machines in a bid to evade detection. While encrypting files on the host computer the ransomware payload “hides” within a VM to avoid raising suspicions or triggering antivirus software.

Weekly Intelligence Trends and Advisory – 18 July 2021

What makes BIOPASS RAT particularly interesting is that it can sniff its victim’s screen by abusing the framework of OBS Studio, a popular live streaming and video recording app, to establish live streaming to a cloud service via RTMP

Weekly Intelligence Trends and Advisory – 13 Jun 2021

The new piece of malware dubbed SkinnyBoy in spear-phishing campaigns attributed to Russian-speaking hacking group Fancy Bear (aka APT28, Sednit, Sofacy, Strontium, PwnStorm) targeting military and government institutions.