ESET researchers analyze new TTPs attributed to the Turla group that leverage PowerShell to run malware in-memory only. Turla, also known as Snake, is an infamous espionage group recognized for its complex malware. To confound detection, its operators recently started using PowerShell scripts that provide direct, in-memory loading and execution of malware executables and libraries. … More A dive into Turla PowerShell usage
ESET sheds light on commands used by the favorite backdoor of the Sednit group. What happens when a victim is compromised by a backdoor and the operator is controlling it? It’s a difficult question that is not possible to answer entirely by reverse engineering the code. In this article we will analyze commands sent by … More A journey to Zebrocy land
What you need to know about the critical security hole that could enable the next WannaCryptor. Remember the panic that hit organizations around the world on May 12th, 2017 when machine after machine displayed the WannaCryptor ransom screen? Well, we might have a similar incident on our hands in the coming days, weeks or months … More Patch now! Why the BlueKeep vulnerability is a big deal
ESET, a global leader in cybersecurity, has received awards from both AV Comparatives and Virus Bulletin for their ESET Internet Security product for Windows. AV Comparatives, a world-renowned independent testing and certification body, has awarded ESET Internet Security first place in their Performance Test – Impact of Consumer Security Software on System Performance report. ESET scored 99.7 out of … More ESET Internet Security recognized with awards from AV Comparatives and Virus Bulletin
Attack attempts involving the USA’s National Security Agency’s exploit are in hundreds of thousands daily. It has been two years since EternalBlue opened the door to one of the nastiest ransomware outbreaks in history, known as WannaCryptor (or WannaCry). Since the now-infamous malware incident, attempts to use the exploit have only been growing in prevalence. Currently … More NSA’s EternalBlue exploit reaching new heights since WannaCryptor outbreak
ESET Ireland 