ESET research

In this campaign, ShadowPad's launcher was replaced by a simpler one, not VMProtected and using XOR-encryption instead of RC5. This ShadowPad variant embeds 17 modules including a keylogger and a screenshot module. 2/3pic.twitter.com/7icZEfYM61

#ESETresearch uncovered a new campaign of the #Winnti Group targeting #HongKong universities with ShadowPad and Winnti. @mathieutartare https://www.welivesecurity.com/2020/01/31/winnti-group-targeting-universities-hong-kong/ … 1/3pic.twitter.com/d57V1rhBR1

Exciting news for the Industrial Control Systems community! As of last week, The @MITREattack knowledge base of #cybersecurity tactics and techniques also includes a separate framework specifically for #ICS, with major contributions from #ESETresearch. https://collaborate.mitre.org/attackics/index.php/Main_Page …pic.twitter.com/vUftMjTgRW

Happy New Year! From all the #ESETresearch labs around the world, we wish you safe and successful #2020, wherever it will take you. #EnjoySaferTechnologypic.twitter.com/nbNNxZn51q

#OceanLotus (#APT32) campaign spreading via FB. Post or DM contains link to a malicious archive hosted on Dropbox. First stage is executed upon opening the decoy “document” seemingly related to Vietnam. Beacons to opengroup.homeunix[.]org via HTTPS. @marc_etienne_ #ESETresearchpic.twitter.com/7CKXhe2b4m

The #BlueKeep vulnerability has not yet caused havoc, but many systems are still not patched, and a wormable version of the #exploit might still be found. That’s why we created a free utility to check if your system is vulnerable. #ESETresearch @goretsky https://www.welivesecurity.com/2019/12/17/bluekeep-time-disconnect-rdp-internet/ …pic.twitter.com/2oPEyRx8Tk

The ESET Trends Report for 2020 is out! If you are interested in what the main challenges for #cybersecurity and #privacy are in the upcoming year, download the PDF and dig in. #MachineLearning #DigitalTransformation #Elections #SmartCities #ESETresearch https://www.welivesecurity.com/wp-content/uploads/2019/12/ESET_Cybersecurity_Trends_2020.pdf …pic.twitter.com/Zr3ElqV5DT

#StrandHogg was misused by the #BankBot Android banking Trojan found by @LukasStefanko on #GooglePlay back in 2017.   Using "taskAffinity", it posed as a Google Play Store app to request credit card details from victims. #ESETresearch https://www.welivesecurity.com/2017/09/25/banking-trojan-returns-google-play/ …pic.twitter.com/sboayBW3gG

https://twitter.com/m0n0sapiens/status/1201520018418274305 …pic.twitter.com/KsaztopWZ3

After years of relying on click fraud, ad injection, social network fraud and credential stealing, #Stantinko botnet has started to mine #Monero. Today, #ESETresearch dives deeper into Stantinko's new #cryptomining business model. https://www.welivesecurity.com/2019/11/26/stantinko-botnet-adds-cryptomining-criminal-activities/ …pic.twitter.com/od7rBMxyeO

#ESETresearch will be at @RSAConference 2020 with a workshop by @marc_etienne_, "Hunting Linux Malware for Fun and Flags"! As he put it: “Bring your shells and SSH clients, we'll hunt some Linux malware together. There will be fun, and flags! See you in February!” #RSACpic.twitter.com/2jTmTOhOgs