Alina: Following The Shadow Part 1
Last I spoke with you, I went into the details of a family of Point of Sale (POS) malware, named ...
Read More
Stay Informed
Sign up to receive the latest security news and trends straight to your inbox from Trustwave.
Backoff - Technical Analysis
As discussed in the an advisory published by US-CERT, Trustwave SpiderLabs has discovered a ...
Read MoreJackPOS – The House Always Wins
A new point of sale (POS) malware family could be a jackpot for credit card thieves. I recently ...
Read MoreHacking a Reporter: Writing Malware For Fun and Profit (Part 2 of 3)
Matthew Jakubowski (@jaku) contributed to the writing of this blog post.
Read MoreHacking a Reporter: Writing Malware For Fun and Profit (Part 1 of 3)
Matthew Jakubowski (@jaku) contributed to the writing of this blog post.
Read MoreHaving a Fiesta With Ploutus
A short while ago, SafenSoft reported a new family ofmalware, named 'Ploutus', that targeted a ...
Read MoreDigging Into the New Apache Injection Module
I recently got a chance to dig into a couple variants of the new Apache injection module that ...
Read MoreAlina: Following The Shadow Part 2
This will likely be the final blog post in this series on the Alina Point of Sale (POS) malware ...
Read MoreAlina: Casting a Shadow on POS
Over the pastfew months, a number of malware families targeting Point of Sale (POS) systems have ...
Read MoreBasic Packers: Easy As Pie
Throughout Trustwave SpiderLabs' many forensicinvestigations, we often stumble upon malicious ...
Read MoreMimicking Attackers: Building Malware for CCDC
This past weekend my fellow coworkers/friends and myself had the opportunity and the privilege to ...
Read MoreThe Dexter Malware: Getting Your Hands Dirty
A very interesting piece of malware that targets Point of Sale systems has recently surfaced in the ...
Read MoreFinSpy Mobile - Configuration and Insight
A couple of weeks ago, Citizen Lab announced the discovery of the mobile component to the ...
Read MoreHow Antivirus Saved the Day…Sort of.
Recently, I found myself in a common situation—helping a comrade in our Incident Response division ...
Read MoreDefeating Flame String Obfuscation with IDAPython
Like many other security research firms, SpiderLabs Research has been actively investigating the ...
Read MoreRedKit Payload - Binary Fun
Before I jump into this blog post, I'd like to point out some interesting developments with the ...
Read MoreDirty RAT Eats Nate's Banana
I've got a real treat for everyone today, as I received approval to blog about an interesting piece ...
Read MoreAndroid IRC Bot - This Ain't Your Granny's Android Malware (Or Maybe It Is)
As I'm sure many of you know, the rise of mobile-based malware has been on the rise for some time ...
Read MoreNickiSpy.C - Android Malware Analysis Demo
Recently I got the chance to dig into a nice little piece of Android spyware, commonly known as ...
Read MoreMorto: More than Meets the Eye
There's been a lot of talk the past week or so about Morto. For those unfamiliar or unaware, Morto ...
Read MoreTWSL2011-008: Focus Stealing Vulnerability in Android
The SpiderLabs team at Trustwave published a new advisory today, which details an issue identified ...
Read MoreTWSL2011-007: iOS SSL Implementation Does Not Validate Certificate Chain
The SpiderLabs team at Trustwave published a new advisory today, which details an issue identified ...
Read MoreTWSL2011-004: Cross-Site Scripting Vulnerability in ZyXEL ZyWALL 70 Firewall(1)
The SpiderLabs team at Trustwave published a new advisory today, which details a vulnerability ...
Read MoreTWSL2011-003: Vulnerabilities in Avocent Cyclades ACS Web Manager
The SpiderLabs team at Trustwave published a new advisory today, which details a vulnerability ...
Read MoreMobile Visability Limitation? There's an App for that.
Last July myself and Christian Papathanasiou presented a DEF CON 18 talk entitled "This is not the ...
Read MoreTWSL2011-002: Vulnerabilities in Comcast DOCSIS 3.0 Business Gateways (SMCD3G-CCR)
The SpiderLabs team at Trustwave published a new advisory yesterday, which details three ...
Read MoreCVE-2010-4506 and CVE-2010-4507 Released
The SpiderLabs team published two new advisories today. The first, CVE-2010-4506, was discovered in ...
Read More