November 16, 2017

Infection Immunity: Has Banking Trojan Emotet Outsmarted Itself?

2 min read - The Emotet banking Trojan is making a comeback with new features and functions — but has the malicious code outsmarted itself?

Incident Response August 28, 2017

Using a Free Online Malware Analysis Sandbox to Dig Into Malicious Code

6 min read - A public malware sandbox can be a great substitute for an in-house malware analysis solution — as long as you understand its limitations.

August 27, 2015

iOS Sandbox Vulnerability Threatens Enterprise MDM Castles

2 min read - Once considered a bastion of mobile security, Apple has come under fire in recent months. Now, a new iOS sandbox vulnerability has emerged.

Intelligence & Analytics June 24, 2015

Signature-Based Detection With YARA

4 min read - Security researchers on the lookout for another resource to help with malware detection should consider the pattern-matching tool YARA.

Intelligence & Analytics June 1, 2015

Comparing Free Online Malware Analysis Sandboxes

6 min read - Free malware analysis sandboxes can be used as a means of enhancing cybersecurity without a major drain on time, money and other resources.

May 13, 2015

Tinba Malware Watches Mouse Movements, Screen Activity to Avoid Sandbox Detection

2 min read - Security researchers found that the Tinba malware is no longer relying on its small size as the only way to avoid detection from sandbox technology.

Software Vulnerabilities April 8, 2014

A Peek into IE’s Enhanced Protected Mode Sandbox

7 min read - IE 10 Enhanced Protected Mode (EPM) sandbox research that was presented at Hack in the Box 2013 and the Black Hat Asia 2014 security conferences. Summary of findings and discussion of the most important points and related resources to find…

Software Vulnerabilities March 19, 2014

Diving Into IE 10’s Enhanced Protected Mode Sandbox at Black Hat Asia 2014

2 min read - If you’re using Internet Explorer in immersive mode on Windows 8/8.1 to browse Internet web sites, under the hood, your browser will be running inside the Enhanced Protected Mode sandbox. Enhanced Protected Mode (EPM) is the sandboxing mechanism in IE…

Software Vulnerabilities January 20, 2014

Application Sandboxing Makes Exploiting Vulnerabilities Less Profitable

4 min read - Sandboxing isn’t a new concept; it’s been used in various forms for some time. Application sandboxes add one more layer of defense in the struggle to regain the right to peaceful enjoyment in our own networks.

Advanced Threats May 2, 2013

Multistage Exploit Kits Boost Effective Malware Delivery

6 min read - Like ICBM missiles, multistage exploit kits first launch a nonthreatening stage and then use the second stage to inflict damage without raising suspicion.