Fidelis Threat Research analysts have discovered a new version of ThreadKit, malware notorious for it’s use by Cobalt Group

The Fidelis Threat Research Team issued important findings around an observed attack targeting a prominent U.S. lobbying group, the NFTC.

Learn techniques of data mining malware and attacks and surveil malicious individual's activities.

Vawtrak threat actors have changed tactics. Our research provides insight into their adjusted DGA implementation.

The H-W0rm RAT is one of the most active and infectious RATs we've observed. Learn more about H-W0rm and how to detect it.

Join us for a 30 minute overview and key findings of the Turbo campaign.

Our research has uncovered similarities of this Derusbi 64-bit Linux variant with multiple version of Derusbi for the Windows operating system.

Techniques documented in the report indicate a level of sophistication that make reverse engineering difficult and obscure threat actor intentions.

This paper highlights a RAT that has evolved over the years and is known to be used by threat actors to infect enterprises worldwide and home users.

DarkComet remains a popular RAT for a diverse hostile actor set.

Fidelis believes that the events detailed in this report are more consistent with cyber criminals than espionage actors.

Pushdo continues to demonstrate its resiliency with a new variant that to date has infected systems in more than 50 countries.

This paper highlights a remote access tool that has evolved over the years and is known to be used by threat actors to infect enterprises worldwide

This paper highlights campaigns that have compromised systems at significant enterprises worldwide, utilizing various bot malware.

We've observed an increase in attack activity against the U.S. state and local government, technology, advisory services, health, & financial