Threat Advisories

Past Threat Advisories

Year Released:
  1. The H-W0rm RAT is one of the most active and infectious RATs we've observed. Learn more about H-W0rm and how to detect it.
  2. Our research has uncovered similarities of this Derusbi 64-bit Linux variant with multiple version of Derusbi for the Windows operating system.
  3. Techniques documented in the report indicate a level of sophistication that make reverse engineering difficult and obscure threat actor intentions.
  4. This paper highlights a RAT that has evolved over the years and is known to be used by threat actors to infect enterprises worldwide and home users.
  5. DarkComet remains a popular RAT for a diverse hostile actor set.
  6. Fidelis believes that the events detailed in this report are more consistent with cyber criminals than espionage actors.
  7. Pushdo continues to demonstrate its resiliency with a new variant that to date has infected systems in more than 50 countries.
  8. Ratting on AlienSpy

    Threat Advisory

    This paper highlights a remote access tool that has evolved over the years and is known to be used by threat actors to infect enterprises worldwide
  9. This paper highlights campaigns that have compromised systems at significant enterprises worldwide, utilizing various bot malware.