Exploring the VirusTotal Dataset | An Analyst’s Guide to Effective Threat Research
By Aleksandar Milenkoski (SentinelOne) and Jose Luis Sánchez Martínez VirusTotal stores a vast collection of files, URLs, domains, and IPs submitted by users worldwide. It features a variety of functionalities and integrates third-party detection engines and tools to analyze the maliciousness of submitted artifacts and gather relevant related information, such as file properties, domain registrars, […] more…APT43: An investigation into the North Korean group’s cybercrime operations
Introduction As recently reported by our Mandiant’s colleagues, APT43 is a threat actor believed to be associated with North Korea. APT43’s main targets include governmental institutions, research groups, think tanks, business services, and the manufacturing sector, with most victims located in the United States and South Korea. The group uses a variety of techniques and […] more…More information
- US carriers said to have rejected ‘kill switch’ technology last year
- Verizon settles FCC consumer privacy investigation
- US students get cracking on Chinese malware code
- Some Nokia 7.1 Units in Norway Caught Sending Data to China
- CISO Mindshare Is Influencing Tomorrow’s Platforms
- Microsoft Internet Explorer CVE-2015-0035 Remote Memory Corruption Vulnerability
- Venture Capital Giant Sequoia Targeted in BEC Attack
- What is biometrics? And why collecting biometric data is risky
- Case Study: Analyzing a WordPress Attack – Dissecting the webr00t cgi shell – Part I
- DomainTools’ Iris interface speeds up cybercrime investigations