Threat Insight
Kronos Reborn
Proofpoint researchers examine a new version of the Kronos banking Trojan.
TA505 Abusing SettingContent-ms within PDF files to Distribute FlawedAmmyy RAT
Proofpoint researchers detail a large campaign abusing the DeepLink object in SettingContent-ms files embedded in PDF documents.
If you can’t steal them, mine them - Cryptocurrency threat roundup
Proofpoint researchers detail the current state of cryptocurrencies in cybercrime.
TA505 shifts with the times
Proofpoint researchers provide an update on substantial changes in the TTPs of one of the most prolific actors we track.
DanaBot - A new banking Trojan surfaces Down Under
Proofpoint researchers analyze a new banking Trojan that recently appeared in the wild.
Thief in the night: New Nocturnal Stealer grabs data on the cheap
Proofpoint researchers describe a previously undocumented stealer.
Proofpoint Threat Report: Banking Trojans dominate the malware landscape in the first months of 2018
Proofpoint researchers provide a snapshot and analysis of the changing threat landscape in the first quarter of this year.
Phorpiex – A decade of spamming from the shadows
Proofpoint researchers detail how the Phorpiex/Trik botnet operates and sends spam for a range of actors.
Money for nothing? Cryptocurrency “giveaways” net thousands for scammers
Proofpoint researchers detail a new trend in cryptocurrency giveaway scams
Brain Food botnet gives website operators heartburn
Proofpoint researchers detail the purpose, function, and propagation of the Brain Food botnet.