TREASUREHUNT is a POS malware that appears custom-built for a particular “dump shop” that sells stolen credit card data. TREASUREHUNT enumerates running processes, extracts payment card information from memory, and then transmits this information to a command and control server. This blog takes a closer look.
Entries filed under 'Blog'
Threat Research Blog
The FireEye Labs team posts blog entries under threat research to present and discuss cyber attacks and threat intelligence from a technical perspective. They cover the full spectrum of exploits and vulnerabilities, including advanced malware and targeted threats.
TREASUREHUNT: A Custom POS Malware Tool
March 28, 2016 8:00 AM By Nart Villeneuve | Advanced Malware, Threat ResearchSurge in Spam Campaign Delivering Locky Ransomware Downloaders
March 25, 2016 8:00 AM By Haowei Ren, Alex Berry , Jonell Baltazar , Joonho Sa, Ronghwa Chong | Advanced Malware, Threat ResearchFireEye Labs is seeing a huge detection spike due to a pair of concurrent email spam campaigns that are affecting more than 50 different countries.
Read more...99 Problems but Two-Factor Ain’t One
March 23, 2016 8:00 AM By Austin Baker | Exploits, Threat ResearchTwo-factor solutions can be highly effective defensive tools in your fight against advanced attackers when implemented securely. Your overtaxed and understaffed security team is likely already facing 99 other security problems - don’t let two-factor authentication be one.
Read more...Wiping Out a Malicious Campaign Abusing Chinese Ad Platform
March 22, 2016 8:00 AM By Safwan Khan | Advanced Malware, Threat ResearchFireEye Labs has discovered a malvertising campaign linked back to China-based Baidu.
Read more...Stop Scanning My Macro
March 21, 2016 8:30 AM By Robert Venal, Rex Plantado, Ronghwa Chong | Advanced Malware, Threat ResearchCybercriminals continue to innovate, finding creative ways of making threats harder to detect using static signatures. A recent strategy involves two large Dridex campaigns that changed the attachment file type and location to avoid scanners.
Read more...Sign up for
Email Updates
