Eng
  1. Skip to navigation
  2. Skip to content
  3. Skip to sidebar


Labs blog


Latest Threats RSS feed Latest posts on the Labs Weblog:



  • Ransomware Race (part 5): SynoLocker's unkept promises

    Friday, August 22, 2014
    by Artturi

    We believe you should never pay a ransom to online criminals. The reason is quite simple. File-encrypting ransomware holds the victim's personal files "at ransom" until a payment is made. For the scheme to work, the victim has to believe that paying up will help. However, the only certain outcome from paying criminals is to encourage them to continue their malicious activities: paying the ransom might not actually get you your files back. Case in point, a recent ransomware family commonly known as SynoLocker.

    Read more



  • Data vs. Metadata

    Wednesday, August 20, 2014
    by Sean

    Google uses HTTPS for all search queries. That's good, because it means that all of the questions you ask (a.k.a. your data) will be encrypted. However… regardless of HTTPS, inferences about your searches can still be made by somebody with accesses to your network traffic. For example:

    Read more



  • Ransomware Race (Part 4): Adult Content, Browlock's Staying Power

    Friday, August 15, 2014
    by Patricia

    Lately, our eyes have been caught by the rise of Ransomware families. It is very evident that the bad guys are constantly developing this type of malware family as seen in our previous posts about CryptoWall and CTB-Locker and Synolocker . In addition to these families, we have also been observing a rather simpler type of Ransomware, yet pretty active and very much alive since it was first encountered in 2013 - Browlock.

    Read more



  • Ransomware Race (Part 3): SynoLocker Under The Hood

    Wednesday, August 13, 2014
    by Artturi

    Last week we wrote about a new ransomware family called SynoLocker that was targeting network attached storage devices manufactured by Synology. Initial rumours suggested SynoLocker might be related to the infamous CryptoLocker, so we decided to dig deeper.

    Read more



  • Timo Discusses Dynamic Analysis of Flash Files

    Tuesday, August 12, 2014
    by Sean

    Senior Researcher Timo Hirvonen presented at Black Hat USA 2014, and publicly released a tool which enables dynamic analysis of malicious Flash files. He spoke about it with SC Magazine's Adam Greenberg last week:

    Read more



Read more from the Labs Weblog >>