SpiderLabs Blog

December 18, 2023 | Ofer Caspi

Executive summary In recent developments, a sophisticated malware stealer ...

December 14, 2023 | Radek Zdonczyk

In the vast world of cybersecurity, as technologies evolve, so do the methods ...

December 06, 2023

As the manufacturing sector continues its digital transformation, Operational ...

December 05, 2023 | SpiderLabs Researcher

On October 7, 2023, the Palestinian organization Hamas launched the biggest ...

November 15, 2023 | Apurva Goenka

This blog post demonstrates the use of Restricted Admin mode to circumvent MFA ...

November 15, 2023

The annual holiday shopping season is poised for a surge in spending, a fact ...

November 09, 2023 | Zachary Reichert

Discovering Effluence, a unique web shell accessible on every page of an ...

November 07, 2023 | John Jackson

Overall Analysis of Vulnerability Identification – Default Credentials Leading ...

October 17, 2023 | Tom Neaves

I was looking at my watch last week and my attention was moved towards the ...

October 14, 2023 | Natasha Vij and Victoria Nyktas

Stroz Friedberg has observed an uptick in SIM swapping across multiple ...

October 13, 2023 | Eric Rafaloff

This blog post explains how flash loans work, their history, and their role in ...

October 13, 2023 | Medz Barao

A recent vulnerability tracked as Rapid Reset (CVE-2023-44487) in the HTTP/2 ...

October 13, 2023 | Medz Barao

In this era, threat actors have proven to be tireless in their pursuit of ...

October 11, 2023

Cyberattacks striking the financial services industry are more prevalent, ...

October 10, 2023 | Jeannette Dickens Hale

Halloween is arriving and with it, Trustwave’s return to Patch Tuesday reports.

September 27, 2023 | Medz Barao

Let’s try something a bit different and take a look at some of Trustwave ...

September 21, 2023 | Philip Pieterse

When conducting Red Team engagements, more than one Command and Control (C2) ...

September 20, 2023 | Stroz Friedberg DFIR

This client advisory provides an overview of techniques and tactics attributed ...

September 20, 2023 | Rodel Mendrez

In the ever-evolving landscape of malware threats, threat actors are ...

September 13, 2023 | Medz Barao

Open-Source Intelligence (OSINT) can be valuable for an organization and ...

September 11, 2023 | Rachel Kang

In 2022, phishing was responsible for more than half of the incidents ...

September 07, 2023

The LevelBlue SpiderLabs team conducted a multi-month investigation into the ...

September 06, 2023 | Karla Agregado

In our previous blog, we found a lot of phishing and scam URLs abusing ...

August 31, 2023 | Bernard Bautista

Introduction In the realm of cybersecurity, danger hides where we least expect ...

August 30, 2023 | Jose Tozo

In this blog post, we will explore how the computer security landscape has ...

August 29, 2023 | Mike Casayuran

QR Codes, the square images that contain coded information that can be scanned ...

August 25, 2023 | Maria Katrina Udquin and John Kevin Adriano

As the world shifted into remote work and distant learning during the pandemic ...

August 24, 2023 | Maria Katrina Udquin

Business Email Compromise (BEC) remains a lucrative threat vector for ...