Detecting Ticketbleed (CVE-2016-9244)
Detection and mitigation for those running vulnerable F5 Appliances
2016 and 2017: plus ça change?
Looking back at 2016 and looking ahead to 2017
Fox-IT is observing botnet
Recent vulnerability in Eir D1000 Router used to spread updated version of Mirai DDoS bot
DDoS attacks of unprecedented scale. This is just the beginning!
Unsecured IoT devices pose threat to Internet availability
Ziggo ransomware phishing campaign still increasing in size
Fox-IT’s SOC observed fake Ziggo invoice e-mails linking to a ransomware variant known as TorrentLocker.
Mofang: A politically motivated information stealing adversary
Mofang (模仿, Mófa ̌ng, to imitate) is a threat actor that almost certainly operates out of China…
LinkedIn information used to spread banking malware in the Netherlands
Since early this morning (7th of June 2016, around 08:30 AM) the Fox-IT Security Operations Center…
Ransomware deployments after brute force RDP attack
Fox-IT has encountered various ways in which ransomware is being spread and activated.
Large malvertising campaign hits popular Dutch websites
On Sunday April 10th the Fox-IT Security Operations Center (SOC) started to see an increase of exploit…
Website of security certification provider spreading ransomware
Since Monday the 21st of March the Fox-IT Security Operations Center (SOC) has been observing malicious…