Experimental News Clipping Site

Tag: based detection

  • Cloud Blog: Streamlined Security: Introducing Network Security Integration

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/products/networking/introducing-network-security-integration/ Source: Cloud Blog Title: Streamlined Security: Introducing Network Security Integration Feedly Summary: Many Google Cloud customers have deep investments in third-party ISV security solutions such as appliances to secure their networks and enforce consistent policies across multiple clouds. However, integrating these security solutions into the cloud application environment comes with its own…

  • Threat Research Archives – Unit 42: Uncovering .NET Malware Obfuscated by Encryption and Virtualization

    by

    Kurt Seifried
    in

    Source URL: https://unit42.paloaltonetworks.com/malware-obfuscation-techniques/ Source: Threat Research Archives – Unit 42 Title: Uncovering .NET Malware Obfuscated by Encryption and Virtualization Feedly Summary: AI Summary and Description: Yes **Summary:** This article provides a detailed examination of sophisticated obfuscation techniques utilized by various malware families, specifically focusing on how these methods enhance the ability of malware to evade…

  • Hacker News: GoStringUngarbler: Deobfuscating Strings in Garbled Binaries

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/topics/threat-intelligence/gostringungarbler-deobfuscating-strings-in-garbled-binaries Source: Hacker News Title: GoStringUngarbler: Deobfuscating Strings in Garbled Binaries Feedly Summary: Comments AI Summary and Description: Yes Summary: This text details the challenges associated with analyzing malware written in Go that utilizes the garble obfuscator, focusing on the introduction of the GoStringUngarbler tool, which automates the deobfuscation process of string literals.…

  • Unit 42: Beneath the Surface: Detecting and Blocking Hidden Malicious Traffic Distribution Systems

    by

    Kurt Seifried
    in

    Source URL: https://unit42.paloaltonetworks.com/?p=138517 Source: Unit 42 Title: Beneath the Surface: Detecting and Blocking Hidden Malicious Traffic Distribution Systems Feedly Summary: A topological analysis and case studies add nuance to a study of malicious traffic distribution systems. We compare their use by attackers to benign systems. The post Beneath the Surface: Detecting and Blocking Hidden Malicious…

  • Unit 42: Stately Taurus Activity in Southeast Asia Links to Bookworm Malware

    by

    Kurt Seifried
    in

    Source URL: https://unit42.paloaltonetworks.com/?p=138311 Source: Unit 42 Title: Stately Taurus Activity in Southeast Asia Links to Bookworm Malware Feedly Summary: Unit 42 details the just-discovered connection between threat group Stately Taurus (aka Mustang Panda) and the malware Bookworm, found during analysis of the group’s infrastructure. The post Stately Taurus Activity in Southeast Asia Links to Bookworm…