Threat Insight

Cybersecurity research and commentary on malware, user actions, and other threats to information security
February 02, 2017

Oops, they did it again: APT Targets Russia and Belarus with ZeroT and PlugX

Darien Huss, Pierre T, Axel F and Proofpoint Staff


February 02, 2017

Hook, line, and sinker - A closer look at a sophisticated phishing kit

Proofpoint Staff

Proofpoint researchers analyze the capabilities and data flow of a new PayPal phishing kit.

January 17, 2017

EITest Nabbing Chrome Users with a “Chrome Font” Social Engineering Scheme


Proofpoint researchers provide background on EITest activity and explore a newly added Chrome case of the EITest infection chain

January 12, 2017

Targeted Threat Leads to Keylogger via Fake Silverlight Update

Danny Howerton

Proofpoint researchers track a targeted keylogger campaign using embedded Visual Basic objects and a fake Silverlight update lure.

December 28, 2016

No Shortcuts to Verification: Social Media Verification Phishing Scams Steal Credentials and Credit Card Numbers

Oisin Patenall

Proofpoint researchers track a phishing campaign leveraging the concept of "Twitter Brand Verification".

December 21, 2016

Phishing Actors Take a Cue From Malware-Distributing Brethren

Proofpoint Staff

Proofpoint researchers explore a financial phishing campaign using password-protected attachments, a technique becoming more common in malware campaigns.

December 13, 2016

Home Routers Under Attack via Malvertising on Windows, Android Devices


Proofpoint researchers track ongoing malvertising campaigns leading to the DNSChanger exploit kit.

December 08, 2016

Ostap Bender: 400 Ways to Make the Population Part With Their Money

Proofpoint Staff

Proofpoint researchers track a threat actor group using a new malware and malicious emails to infect victims with banking Trojans and POS malware.

December 07, 2016

August in November: New Information Stealer Hits the Scene

Proofpoint Staff

Proofpoint researchers identify a new information stealer that can grab messenger and FTP credentials, cryptocurrency wallets, and other data while evading detection.

December 06, 2016

ZeusPOS and NewPOSthings Point-of-Sale Malware Traffic Quadruples For Black Friday

Proofpoint Staff

Proofpoint researchers track multiple point-of-sale malware variants and seasonal variations in their propagation.


Stay Connected