Remove 2013 Remove Technology Remove Threat Reports
article thumbnail

APT trends report Q1 2021

SecureList

We have discovered new evidence showing that Domestic Kitten has been using PE executables to target victims using Windows since at least 2013, with some evidence that it goes back to 2011. In addition, Purple Lambert implements functionality similar to, but in different ways, both Gray Lambert and White Lambert. Final thoughts.

Malware 145
article thumbnail

On Detection: Tactical to Functional

Security Boulevard

Out-Minidump is a PowerShell script written by Matt Graeber that leverages a technology called “reflection” to allow direct, in-memory, Win32 function calls from PowerShell. To help make this idea concrete, we can analyze two tools which are literally different, but functionally the same. Oxford University Press. [4]: 4]: Aristotle.

article thumbnail

Cyber Security Roundup for April 2021

Security Boulevard

invest in better endpoint detection and response (EDR) technology, apparently recommending Cylance or VMware Carbon Black. At the start of March 2021, Microsoft rushed out patches for a critical zero-day Vulnerability in Exchange Server (2010, 2013, 2016, and 2019). conduct employee phishing tests. conduct penetration testing.