SpiderLabs Blog

February 26, 2022 | Eduardo Mattos and Rob Homewood

In 2021, Stroz Friedberg observed novel indicators of compromise (IOCs) and a ...

December 10, 2021 | SpiderLabs Researcher

Updates: Dec. 29: Updated to cover three additional CVEs: CVE-2021-4104, ...

January 29, 2021 | Partha Alwar, Carly Battaile and Alex Parsons

How an advanced threat group leveraged Microsoft Azure to gain persistent ...

January 27, 2021 | Faisal Tameesh

A detailed walkthrough of the process hollowing injection technique.

November 14, 2020 | Mary Braden Murphy

Stroz Friedberg has unique insight on how attackers attempt to cover their ...

October 08, 2020 | Daniel Spicer

Stroz Friedberg provides a look into the techniques and patterns of the ...

August 19, 2020 | Daniel Spicer and Partha Alwar

Stroz Friedberg Incident Response Services has observed Ragnar Locker use ...

June 19, 2020 | Reegun Jayapaul

Summary Australian Prime Minister Australian Prime Minister Scott Morrison ...

July 11, 2019 | Adrian Pruteanu

If you've traveled at all within North America, you've likely at some point ...

February 11, 2019 | Sean Melia

CVE-2018-19365: Root local file inclusion in Wowza SRM 4.7.4.01.

June 27, 2017 | SpiderLabs Researcher

This is an ongoing, emerging story and may be updated after posting.

August 03, 2015 | Fabian Foerg

Check SSH servers for weak Diffie-Hellman key exchange configurations.