F5 Labs

The latest evolution of cyber weapons is brought to you by the default passwords in Internet of Things (IoT) devices.

The Mirai botnet has infected hundreds of thousands of Internet of Things (IoT) devices, specifically security cameras, by using vendor default passwords for Telnet access.

F5 Labs analysts discovered a target pattern in the IBAN number formats as well as weekly changes to the script injection content. In May 2016, the F5 Security Operations Center (SOC) detected a generic form grabber and IBAN (International Bank...

F5 CISO Mike Convertino on things to keep in mind when developing a security approach to overcome the lack of visibility in the cloud. When Securing Your Applications, Seeing is Believing

HEIST is an example of how risk and threat are different, and why the distinction matters.

Malicious actors and eavesdroppers are forcing Internet communication into a single cryptographic protocol: SSL.

Customer engagement drives web application design, but user-generated content brings inherent security challenges.

Some of you may remember a time when national security was a question of the Army’s defence against international threats. Today, that picture looks very different. If anything,...

And we're watching Dridex. Here's the latest in this malware's evolution.

DDoS attacks have been common since the late 2000s, but average attack peaks have increased to 100+ Gbps.

Anonymous commoditizes well-known DDoS attacks by making easy-to-use tools, available to even the most unsophisticated user.

Webinject crafting is a separate profession now. Hackers write webinjects and sell them to fraudsters, who use them to weaponize Trojans.

Ongoing campaign analysis has revealed that Dridex malware's latest focus has strongly shifted in recent months to US banks.

Like many other financial Trojans, the notorious Dridex malware keeps evolving and strengthening its presence.

Standard mobile banking trojans post their own fraudulent content over banking applications. Yasuo-Bot goes further.

Webinject attacks modify webpages to allow fraudsters to collect credentials, or act more directly against user accounts.

Dyre malware requires little introduction as it has been the focus of many publications, and it is a well-known threat. One of the reasons for it being so infamous is the frequent changes the authors incorporate in...

Slave is financial malware written in Visual Basic. Since 2015 it has evolved from relatively simple IBAN swapping.

VBKlip has evolved significantly from searching for IBAN data in copy-paste functionality to MITB techniques.

Dyre is one of the most sophisticated banking malware agents in the wild.