Avast Finds Compromised Philippine Navy Certificate Used in Remote Access Tool

Avast –  Avast –  Avast Threat Intelligence Team has found a remote access tool (RAT) actively being used in the wild in the Philippines that uses what appears to be…

Mēris and TrickBot standing on the shoulders of giants

Avast –  Avast –  This is the story of piecing together information and research leading to the discovery of one of the largest botnet-as-a-service cybercrime operations we’ve seen in a…

Decrypted: Prometheus Ransomware

Avast –  Avast –  Avast Releases Decryptor for the Prometheus Ransomware. Prometheus is a ransomware strain written in C# that inherited a lot of code from an older strain called…

Help for Ukraine: Free decryptor for HermeticRansom ransomware

Avast –  Avast –  On February 24th, the Avast Threat Labs discovered a new ransomware strain accompanying the data wiper HermeticWiper malware,  which our colleagues at ESET found circulating in…

Decrypted: TargetCompany Ransomware

Avast –  Avast –  On January 25, 2022, a victim of a ransomware attack reached out to us for help. The extension of the encrypted files and the ransom note…

Analysis of Attack Against National Games of China Systems

Avast –  Avast –  Introduction On September 15, 2021 the National Games of China began in the Chinese city of Shaanxi. It is an event similar if not identical to…

Web Skimming Attacks Using Google Tag Manager

Avast –  Avast –  E-commerce websites are much more popular than they used to be, people tend to shop online more and more often. This leads to the growth of…

Research shows over 10% of sampled Firebase instances open

Avast –  Avast –  Firebase is Google’s mobile and web app development platform. Developers can use Firebase to facilitate developing mobile and web apps, especially for the Android mobile platform.…

Backdoored Client from Mongolian CA MonPass

Avast –  Avast –  We discovered an installer downloaded from the official website of MonPass, a major certification authority (CA) in Mongolia in East Asia that was backdoored with Cobalt…