Lutech Cyber Threat Intelligence Research Paper

Recent News

Carding – Tecniche di vendita: evoluzioni recenti e future

Questa analisi è stata inserita nel REPORT CLUSIT 2018 – https://clusit.it/rapporto-clusit/ Introduzione Il presente report redatto dal Team di Cyber Threat Intelligence di Lutech, ha lo scopo di presentare lo ...

The TaxOlolo Affair – A Prequel and a Sequel

Why this article? Some news have been published recently about a “new” malspam campaign targetting italian users, such as these two: http://www.certego.net/en/news/new-spam-delivering-infostealer/ https://marcoramilli.blogspot.it/2018/01/huge-botnet-attacking-italian-companies.html In this campaign, the attackers are sending ...

Malware Analysis with real time IOC feed ( EoT ) and private sources

Introduction Lutech Cyber Threat Intelligence team, with the help of Lutech EyeOnThreat™  and his own private infrastructure, identified an attack from a Chinese IP address and performed an analysis about ...

Join the Navy – Is it really easy to hack a boat?

Introduction After the publication of the Ship Tracker (data powered by Shodan), Lutech Cyber Threat Intelligence team, with the help of Lutech ThreatOculus™ (also known as Lutech TMS for Cyber ...

EyeOnThreat™: Not Yet Another Threat Aggregator

Lutech Cyber Threat Intelligence Team announcing the release of new Cyber Threat Intelligence Service EyeOnThreat™ What is EyeOnThreat™? EyeOnThreat™ is a service for gathering, classifying, enriching and distributing or giving ...

GootKit: New attack methodology and many Italian banks in the malware scope

A campaign of redirection attacks – targeted at major European banks – has been observed recently, involving the GootKit malware. After an initial test phase targeting some British banks, customers ...

Blackmarkets Analysis – Italian carding scenario and focus, 2016 period

This study was first reported in the 2017 CLUSIT REPORT – https://clusit.it/rapporto-clusit/   Introduction This report, edited by Lutech Cyber Threat Intelligence Team, has the aim of presenting the current ...

Hancitor – Inside a Malware Campaign (Updated)

What is Hancitor (in short)? Hancitor (AKA Chanitor) is a malware that uses Microsoft Office documents with macros to download malicious payloads like Pony, Vawtrak and other trojans/stealers/ransomware. Recently Hancitor ...