Nice talk from Noushin.Shabab #TheSAS2023

Thrilled to be back on stage at TheSAS2025 #SAS2023 has been wonderful so far! Particularly loved my avatar! 😁😍

At #TheSAS2023, our experts unveiled a sophisticated APT campaign by the #Lazarus group. This campaign targets organizations worldwide through legitimate software designed to encrypt web communications using digital certificates. Read our full report ⇒ kas.pr/7c65

At #TheSAS2023, our experts unveiled the intricate mechanics behind #iOSTriangulation, #StripedFly spyware, the #Lazarus APT group, & #TetrisPhantom. Take a closer look at these key researches, exploring their execution methods & impact in our blog. ⇒ kas.pr/iz2e

Ever wanted to take another look at #OperationTriangulation malware? Then check out VirusTotal - we have uploaded malicious modules used in this campaign. virustotal.com/gui/file/ff2f2… virustotal.com/gui/file/7e779… virustotal.com/gui/file/c2393… virustotal.com/gui/file/ff2f2…

Correct link for the 4th sample: virustotal.com/gui/file/64f36…

We are sharing samples of the iOS cyber espionage APT platform (main implant and additional modules) used in #OperationTriangulation #SharingIsCaring

We discovered a DLL file, identified as hrserv.dll, which is a previously unknown web shell that has features such as custom encoding methods for client communication and in-memory execution. securelist.com/hrserv-apt-web…

Great news! As a contribution to the opensource community, we have already provided training opportunities in our "#Suricata for Incident Response and Threat Hunting" training (xtraining.kaspersky.com/courses/surica…) for several Outreachy Internships Suricata interns, and we have decided to offer more

Unveiling the Lazarus Group's latest cyber scheme: currently targeting South Korean software vendors and spreading malware through stolen exploits, showcasing their global reach and advanced expertise. Learn more👇 youtube.com/watch?v=AbzADr… #CyberThreats #LazarusGroup

In 2023, we uncovered a relentless attack campaign on government entities in APAC. Despite the complex tools used, we were dedicated to uncover their malicious intentions. Here's what we presented at TheSAS2025👇 #SAS2023 #TetrisPhantom #Kaspersky youtube.com/watch?v=1XxPlT…

We (vaber and I) have discovered a Google Chrome zero-day that is actively used in targeted attacks. It was just fixed as CVE-2024-4947 and we're going to reveal more details soon 🔥🔥🔥. Update now! chromereleases.googleblog.com/2024/05/stable…

New blog post! "Building Casper's Shadow". We discovered and researched the #ShadowPad builder. See how ShadowPad is built 😎👻 nao-sec.org/2024/06/buildi…

Published blogpost about CloudComputating group using newly identified QSC framework to carry out cyber espionage activities. Blog link - securelist.com/cloudcomputati… #APT #CloudComputating #BackdoorDiplomacy #FakingDragon

My first #Lazarus report at #Kaspersky is out ! The newly discovered #CookiePlus is a plugin-based malware that has the ability to download both DLL and shellcode. It was a great experience working with great coworkers and learning a lot. securelist.com/lazarus-new-ma…

⚡ We discovered a malicious campaign distributing a #SilentCryptoMiner disguised as a restriction bypass tool. Attackers, who pose as tool developers, blackmail YouTubers creating videos about bypassing blocks. Threatened with copyright strikes, content creators were being

Happy Friday! 0xCC is a free cyber security training conference by women, for women. 👩‍💻 Interested? We've just launched our site for 2025! 0xcc.sh Information about the training courses are on the website. Ticket release + travel grant program open next week. ✨

0xCC 2025 tickets release tomorrow and we say thank you enough to Shanna Niggans 🦄, Mel, Renae Schlig, Kinga Fil, Negar Shabab and Noushin.Shabab for lending their time and expertise this year! Course details: 0xcc.sh/training.html Remember all courses are two days and run

One week until 0xCC 2025, we hope you're as excited as we are ✨ A huge shout out to Mel, Nae, Noushin.Shabab Negar Shabab, Shanna Niggans 🦄 and Kinga for the huge amount of time and work they've put in!

I'm excited to be part of the Arsenal Review Board at Black Hat USA 2025, to join me click here app.ingo.me/q/t445n #BHUSA