Award-winning news, views, and insight from the ESET security community
ESET Research
Embargo ransomware: Rock’n’Rust
Novice ransomware group Embargo is testing and deploying a new Rust-based toolkit
Jan Holman and Tomáš Zvara • 23 Oct 2024
Telekopye transitions to targeting tourists via hotel booking scam
ESET Research shares new findings about Telekopye, a scam toolkit used to defraud people on online marketplaces, and newly on accommodation booking platforms
Jakub Souček and Radek Jizba • 10 Oct 2024
Mind the (air) gap: GoldenJackal gooses government guardrails
ESET Research analyzed two separate toolsets for breaching air-gapped systems, used by a cyberespionage threat actor known as GoldenJackal
Matías Porolli • 07 Oct 2024
Separating the bee from the panda: CeranaKeeper making a beeline for Thailand
ESET Research details the tools and activities of a new China-aligned threat actor, CeranaKeeper, focusing on massive data exfiltration in Southeast Asia
Romain Dumont • 02 Oct 2024
Cyberespionage the Gamaredon way: Analysis of toolset used to spy on Ukraine in 2022 and 2023
ESET Research has conducted a comprehensive technical analysis of Gamaredon’s toolset used to conduct its cyberespionage activities focused in Ukraine
Zoltán Rusnák • 26 Sep 2024
ESET Research Podcast: EvilVideo
ESET researchers discuss how they uncovered a zero-day Telegram for Android exploit that allowed attackers to send malicious files posing as videos
ESET Research • 17 Sep 2024
CosmicBeetle steps up: Probation period at RansomHub
CosmicBeetle, after improving its own ransomware, tries its luck as a RansomHub affiliate
Jakub Souček • 10 Sep 2024
ESET Research Podcast: HotPage
ESET researchers discuss HotPage, a recently discovered adware armed with a highest-privilege, yet vulnerable, Microsoft-signed driver
ESET Research • 05 Sep 2024
Analysis of two arbitrary code execution vulnerabilities affecting WPS Office
Demystifying CVE-2024-7262 and CVE-2024-7263
Romain Dumont • 28 Aug 2024
