Homepage
Open in app
Sign in
Get started
CSIS TechBlog
About CSIS
Software Engineering Posts
Security Research Posts
Work at CSIS
Follow
Chapter 1 — From Gozi to ISFB: The history of a mythical malware family.
Chapter 1 — From Gozi to ISFB: The history of a mythical malware family.
Illustrating ISFBs journey from the early start over the leak of Gozi 1 to their recent mutation into LDR4 and its relations to other…
Benoit ANCEL
Oct 24, 2022
An inside view of domain anonymization as-a-service — the BraZZZerSFF infrastructure
An inside view of domain anonymization as-a-service — the BraZZZerSFF infrastructure
One, if not the main, challenge with producing good intelligence is to have access to the right information at the right moment. The right…
Benoit ANCEL
Aug 8, 2022
The Brief Glory of Cabassous/FluBot — a private Android banking botnet
The Brief Glory of Cabassous/FluBot — a private Android banking botnet
A new botnet has surfaced in late 2020, take a look at the details about this criminal operation targeting banking users in Spain and…
Aleksejs Kuprins
Mar 16, 2021
The Nemty affiliate model
The Nemty affiliate model
Almost a year after the end of the operations of Nemty ransomware, we are going to try here to present some internal details of their…
Benoit ANCEL
Jan 25, 2021
Silencing Microsoft Defender for Endpoint using firewall rules
Silencing Microsoft Defender for Endpoint using firewall rules
Windows Defender for Endpoint (Formerly Windows Defender ATP) is a so-called “cloud powered” EDR product[1], i.e. alerts and events are…
Søren Fritzbøger
Jan 21, 2021
GCleaner, Garbage provider since 2019
GCleaner, Garbage provider since 2019
How malware actually ends up on millions of endpoints
Benoit ANCEL
Jan 18, 2021
The RoamingMantis Group’s Expansion to European Apple Accounts and Android Devices
The RoamingMantis Group’s Expansion to European Apple Accounts and Android Devices
Background
Aleksejs Kuprins
Jun 25, 2020
About CSIS TechBlog
Latest Stories
Archive
About Medium
Terms
Privacy
