Threat Insight

Cybersecurity research and commentary on malware, user actions, and other threats to information security
November 03, 2016

Election Spam Gets Bipartisan

Proofpoint Staff

As November 8th gets closer, Proofpoint researchers take a last look at election-related spam and what it says about the patterns and tactics of spammers (and campaigners).

October 28, 2016

Veil-Framework Infects Victims of Targeted OWA Phishing Attack

Proofpoint Staff

Proofpoint researchers track a novel targeted phishing attack that combines several threat vectors to set up advanced attacks as well as a basic credential phish.

October 20, 2016

Spike in Kovter Ad Fraud Malware Riding on Clever Macro Trick

Proofpoint Staff

Proofpoint researchers track a personalized campaign that delivers the Kovter ad fraud Trojan.

October 18, 2016

“O’zapft is!”: Cyber criminals tap into German-speaking targets in time for Oktoberfest

Proofpoint Staff

Not surprisingly, banking Trojans continue to dominate the landscape in German-speaking financial centers in Europe, especially Germany and Switzerland.

October 13, 2016

The Storm After the Calm: Proofpoint Q3 Threat Summary Tracks Locky Ransomware, Social Threats, BEC, and More

Proofpoint Staff

Proofpoint researchers follow trends in email, mobile, and social threats throughout the third quarter of 2016.

October 11, 2016

Peas in a pod: Microsoft patches CVE-2016-3298, a second information disclosure zero-day used in malvertising campaigns and the Neutrino Exploit Kit

Proofpoint Staff

Proofpoint researchers discovered and reported another information disclosure vulnerability associated with the AdGholas malvertising campaign and the Neutrino exploit kit used to filter researchers and delay exposing infection chains.

October 06, 2016

Looking for Trouble: Windows Troubleshooting Platform Leveraged to Deliver Malware

Matthew Mesa, Axel F, Proofpoint Staff

Proofpoint researchers discover a new technique for delivering malware via document attachments that leverages the Windows Troubleshooting Platform.

October 05, 2016

Hades Locker Ransomware Mimics Locky

Proofpoint Staff

Proofpoint researchers identify a new ransomware variant known as Hades Locker sent via the same spam botnet as recent CryptFile2 and MarsJoke campaigns.

September 23, 2016

MarsJoke Ransomware Mimics CTB-Locker

Proofpoint Staff

Proofpoint researchers uncover a new ransomware variant called MarsJoke in a large campaign targeting government and educational institutions.

September 20, 2016

Ursnif Banking Trojan Campaign Ups the Ante with New Sandbox Evasion Techniques

Proofpoint Staff

Proofpoint researchers track new tools and techniques for evading sandboxes and improving targeting while an actor distributes personalized lures and the Ursnif banking Trojan to Australian targets.


Stay Connected