SYK Crypter Distributing Malware Families Via Discord

With 50% more users last year than in 2020, the number of people using the community chat platform Discord is growing at a blistering pace. This has led cybercriminals to…

VMWare Identity Manager Attack: New Backdoor Discovered

Morphisec is a world leader in preventing evasive polymorphic threats launched from zero-day exploits. On April 14 and 15, Morphisec identified exploitation attempts for a week-old VMware Workspace ONE Access…

CaddyWiper Analysis: New Malware Attacking Ukraine

As Russia’s invasion of Ukraine continues, new wiper malware has surfaced attacking Ukrainian infrastructure. Caddywiper was first detected on March 14, 2022. It destroys user data, partitions information from attached…

Remcos Trojan: Analyzing the Attack Chain

Morphisec Labs has detected a new wave of Remcos trojan infection. The theme of the phishing emails is again financial, this time as payment remittances sent from financial institutions. The…

Mars Stealer: Exclusive New Threat Research

The Morphisec Labs team has conducted research on the new Mars infostealer. Mars is based on the older Oski Stealer and was first discovered in June 2021. The new Mars…

New JSSLoader Trojan Delivered Through XLL Files

Morphisec Labs has observed a new wave of JSSLoader infections this year. We’ve tracked JSSLoader activity since December 2020 and published a thorough report on the Russian criminal hacking group…

NFT Buyers Beware: Journey of a Crypto Scammer and How to Stop Them

With examples changing hands for up to $69 million, hosting digital content on blockchain and selling it to investors has become one of the most lucrative things creators can do.…

Log4j Exploit Targets Vulnerable Unifi Network Application (Ubiquiti) at Risk

As a continuation to our previously published blog post on a VMWare Horizon being targeted through the log4j vulnerability, we now identified Unifi Network applications being targeted in a similar…

Log4j Exploit Targets Vulnerable Unifi Network Applications (Ubiquiti)

As a continuation to our previously published blog post on a VMWare Horizon being targeted through the log4j vulnerability, we now identified Unifi Network applications being targeted in a similar…

New Threat Campaign: AsyncRAT Introduces a New Delivery Technique

Morphisec, through its breach prevention with Moving Target Defense technology, has identified a new, sophisticated campaign delivery which has been successfully evading the radar of many security vendors. Through a…