banner-blog.jpg

MENLO SECURITY BLOG

Articles, trends, and advice on cloud security without compromise. Keep up with the latest blog insights on web isolation, network cybersecurity, malware, and more.

Trickbot—New Year | Old Lure

Posted by Vinay Pidathala on Jan 29, 2021

2021 will be a challenging year for security professionals. The fall out from the SUNBURST attack and the Solarwinds hack is yet to be fully understood and we all remain in an elevated state of awareness and concern.

 

Our Threat labs team is constantly looking for new emerging threats by analyzing security events and over 40 million sessions a day on our  isolation-powered cloud security company and recently observed the re-emergence of a previously known threat, commonly known as Trickbot.

 

Read More

Tags: malware, drive-bys, malicious download, trickbot, threat labs

Increase In Attack: SocGholish

Posted by Krishnan Subramanian on Dec 17, 2020

Menlo Labs has uncovered a increase in a drive-by attack that impersonates legitimate browser, Flash, and Microsoft Teams updates

 

In the last two months, the Menlo Labs team has witnessed a surge in drive-by download attacks that use the “SocGholish” framework to infect victims. This particular framework is known to be widely used to deliver malicious payloads by masquerading as a legitimate software update. Isolation prevents this type of attack from delivering its payload to the endpoint. Here’s what we know.

 

Read More

Tags: drive-bys, SocGholish, social engineering, Chrome update, browser update, Microsoft Teams update, malicious ZIP file, malicious download, Firefox update, Flash update

Connect with us

Lists by Topic

see all

Recent Posts