SAS 2021: ‘Tomiris’ Backdoor Linked to SolarWinds Malware

Newly discovered code resembles the Kazuar backdoor and the Sunshuttle second-stage malware distributed by Nobelium in the SolarWinds supply-chain attacks. Researchers have discovered a campaign delivering a previously unknown backdoor…

SAS 2021: FinSpy Surveillance Kit Re-Emerges Stronger Than Ever

A ‘nearly impossible to analyze’ version of the malware sports a bootkit and ‘steal-everything’ capabilities.