News

malware

From CobaltStrike detection ideas to SECRET papers

Another day I was watching this video (link and player below) about ideas on how to detect injection attacks via CobaltStrike, which is such a powerful offensive testing solution. I realized that many of the ideas presented in the video Read more…

By SECRET, 4 months4 months ago

malware

Thoughts on Solarwinds’ samples

In case you are a security professional, you likely already know about the Solarwinds hacking case. In case you aren’t, you can check it here. In a brief, their software was backdoor-ed and distributed to many customers. Here are our Read more…

By SECRET, 4 months4 months ago

malware

A Ransomware has landed! @Embraer

Another day, another ransomware! It seems Brazil has been facing a ransomware wave and this time Embraer, the Brazilian aircraft manufacturer, was the target (Check news here). Here our brief analysis goes. The file said to have attacked Embraer is Read more…

By SECRET, 4 months4 months ago

malware

Brazilian Justice Court Ransomware: Another piece in the Puzzle

We have previously analyzed a malware sample claimed to have attacked the Brazilian Justice Court (Check here). After that, a new payload arrived. It is a Windows malware–available on Virustotal (check here)–, such that we are not sure what is Read more…

By SECRET, 5 months5 months ago

malware

A Ransomware in a Brazilian Justice Court

Yesterday, the world got the news that the Brazilian Supreme Justice Court was the target of a ransomware attack, and had all of their data (and backup) encrypted (check here). What really motivated this attack is still unclear, and several Read more…

By SECRET, 5 months5 months ago

competition

Adversarial Malware in Machine Learning Detectors: Our MLSEC 2020’s SECRETs

If you read any of the SECRET papers, it is not a SECRET for you that using Machine Learning (ML) to detect malware is a challenging endeavor. In one of these papers, we presented the results of our participation in Read more…

By Fabrício Ceschin and Marcus Botacin, 7 months6 months ago

machine learning

And the Competition Winner is… Everyone!

Last year we were breaking machine learning models for malware detection. We were able to bypass all the models of the competition, finishing in the second position — unfortunately, it was not enough to win an NVIDIA graphic card, but Read more…

By Fabrício Ceschin, 10 months7 months ago

machine learning

Sharing Machine Learning Secrets

We are happy to share with you our newest machine learning secret! Scikit-multiflow 0.5 is now available, including our open-source contribution: delayed labels evaluation for supervised learning. We expect that the community makes great use of this new feature, which Read more…

By Fabrício Ceschin, 10 months7 months ago

malware

From CobaltStrike detection ideas to SECRET papers

malware

Thoughts on Solarwinds’ samples

malware

A Ransomware has landed! @Embraer

malware

Brazilian Justice Court Ransomware: Another piece in the Puzzle

malware

A Ransomware in a Brazilian Justice Court

competition

Adversarial Malware in Machine Learning Detectors: Our MLSEC 2020’s SECRETs

machine learning

And the Competition Winner is… Everyone!

machine learning

Sharing Machine Learning Secrets

malware

An Obfuscation Tour

ransomware

Ransomware in Times of Coronavirus