New Threat Alert: Krane Malware
One of our honeypots has recently captured an interesting attack that we have not seen before. In this article, we will go through the peculiarities of…
Albert Zsigovits
All posts by Albert Zsigovits
Honeypot Journals Part II: Attacks on Residential Endpoints
This is the second episode in the Honeypot Journals series, where we report our most recent findings from our honeynet logs. This time, we...
Threat Alert: Mirai/Gafgyt Fork with New DDoS Modules Discovered
On the 27th of August, we have found evidence that an IoT device in one of our customer environments had accessed a malicious software sample. We…
Android Malware: An Overview
Android is a very popular mobile operating system, running on around 50 percent of all mobile devices globally and around 40 percent in North America. The…
Honeypot Journals: Credential Attacks and Lessons from Recent Honeynet Incursions
If you look at a digital attack map, you might think it is impossible for these cyber incursions to happen so rapidly. Thankfully, CUJO AI Labs…
IoT Malware Journals: Prometei (Linux)
The IoT Malware Journals series will cover the IoT threat landscape from a technical perspective. For this first article in the series, I will analyze the…
DNS Hijacking Attacks on Home Routers in Brazil
Recently, we have observed ongoing attacks on residential gateways. These attacks had a common trait: they all originated...
UPX Anti-Unpacking Techniques in IoT Malware
Attackers are always at the forefront of inventing new techniques to stay covert. It comes by no surprise that their tradecraft is also subject to continuous…
Genetics of a Modern Internet of Things (IoT) Attack
When it comes to IoT attacks and malware, there is a perceptible pattern in which most intrusions manifest. It is good practice to study such...