HTA

WDigest credential harvesting

WDigest, a legacy authentication protocol that is still in use on many corporate networks, presents opportunities for attackers to acquire passwords. Its abuse essentially nullifies…

Read more

BARIUM targets gaming supply chains

Enterprise security personnel often assume that legitimate software products are inherently trustworthy. If an attacker takes over a legitimate app or service, they gain a…

Read more

APT32 / OceanLotus campaigns 2019

EV-0054, also known as APT32 or OceanLotus, has been running stealthy operations characterized by novel delivery mechanisms, unique first-level installation, persistence, backdoor implants, and command-and-control…

Read more