What Are LOLBins and How Do Attackers Use Them in Fileless Attacks?

What Is “Living off the Land?” The term “living off the land” (LOL) was coined by malware researchers Christopher Campbell […]

Insider Threat Detection: Recognizing and Preventing One of Today’s Worst Threats

What Is an Insider Threat? As the name plainly suggests, insider threats are risks caused by insiders who have access […]

Protecting Against Advanced Persistent Threats in 2019 and Beyond 

Advanced persistent threats (APTs) are targeted extended attacks usually conducted with the goal of stealing and monitoring data, rather than […]

Ransomware Never Dies – Analysis of New Sodinokibi Ransomware Variant

Summary CyOps, Cynet SOC team, recently encountered a new variant of the Sodinokibi ransomware, discovering several interesting traits. In this […]

The Ursnif Trojan: An Attack Overview and Zoom-In on New Variant

Over the course of the last few months, we at Cynet labs have encountered multiple occurrences of the Ursnif banking […]

One Bot Campaign and Three Cyber Protection Insights

Introduction On the course of our ongoing analysis of telemetry and files within our install base, we have encountered several […]

The Malicious Quartette – Composition for the Attacker, WMI, CMD.EXE and Two LOLbins

By: Ron Lifinski and Haim Zigel A Cynet Research Blog –  Cyberattacks are continuously evolving in the attempt to stay […]

How Hackers Use DNS Tunneling to Own Your Network

By: Ron Lifinski, Cyber Security Researcher Most organizations have a firewall that acts as a filter between their sensitive internal […]

The Orbitz Attack & the Visibility Achilles Heel

You’ve Been Breached – Welcome to the Club “Your account information may have been compromised.” Expedia subsidiary Orbitz welcomed 880,000 […]

The Italian Botnet Attacks

Cynet Detects the Mail Botnet That Has Been Hitting Italian Companies The Cynet 360 holistic security platform successfully detects the […]

Stopping Hidden Threats: Fileless Attacks

Cybercrime never stands still. Online crooks are always looking for a new edge to make their attacks more effective and […]

A Technical View of Bad Rabbit: Blog Part 2

A Technical View of Bad Rabbit: Blog Part 2 Here’s what we know about Bad Rabbit, the ransomware that has […]

Cynet Stopped Bad Rabbit: Blog Part 1

What is being labeled as ransomware makes an appearance again, the latest in 2017’s saga of attacks focused on corporate […]

Ransomware Attacks Show Importance of Complex Protective Measures

By Amir Geri Last Tuesday, the world experienced another massive attack on its way of life. While terrorism targets the […]

Petya or NotPetya - Cynet Stops It

The big conversation around the recent ransomware attacks has been – Petya or NotPetya? So we say – does it […]

A Technical Analysis of NotPetya

Unless you have been living under a rock, over the last couple days you probably heard a lot about Petya […]

MS Patch is Not Enough - See Cynet Stop Petya

If you thought you were safe because you patched Eternal Blue with Microsoft’s MS17-010 patch, you should think again. Yes, June […]

Cynet 360 Stops WannaCry Ransomware

It’s being called the world’s biggest ransomware operation ever. The back-story is known to anyone even remotely following mainstream news […]