top of page
Search
Detecting ManualFinder/PDF Editor Malware Campaign with KQL
A free PDF Editor turning itself into an infostealer overnight. Let's hunt it down with KQL!
Damien van der Linden
5 days ago7 min read
Â
Â
Detecting Executive Impersonation Campaigns with KQL
These e-mails pretend to be from your CEO, have your first name as the subject, and contain absolutely no links, no files, just text.
Damien van der Linden
Jul 154 min read
Â
Â
FileFix – Another Deceptive Attack Vector (Demo and Detections)
ClickFix was bad enough, it became the second most common attack vector right after phishing. ClickFix tricked users with a deceptive...
Damien van der Linden
Jul 113 min read
Â
Â
From Car Rental to Infostealer: A SOCGholish Attack Analysis
Sometimes the most interesting security discoveries start with the most mundane activities.
Damien van der Linden
Jan 295 min read
Â
Â
bottom of page