
Matt Muir
@_mattmuir
Followers
224
Following
542
Media
2
Statuses
82
Been away from here recently but I can finally share my first blog for @datadoghq, an updated campaign from the group behind Spinning YARN.
2
0
4
Latest research from the lab. This is an interesting one! 4 new discovery/initial access tools were found. Each tool contained code to exploit common misconfigurations (and n-day vulnerability) in either YARN, Docker, Confluence or Redis.
Cado Security Labs discover Spinning YARN, an emerging malware campaign using novel Golang payloads to exploit #Docker, Hadoop #YARN, #Confluence and #Redis hosts. Full analysis here: #cloudsecurity #cloudforensics #cloudIR #threatintel #spinningYARN.
2
2
4
Our latest blog covering #Migo - a Golang miner targeting Redis. This one attempts to weaken the Redis server by issuing various config commands, before deploying a user mode rootkit to hide the miner.
1
1
2
Thanks to everyone that attended/tuned-in to my talk for @SANSInstitute today! There have been some requests for me to upload the slides, so here they are.
0
2
10
RT @chrisdoman: If you're at the SANS CTI summit today - check out @_mattmuir 's talk "Beyond Cryptojacking: Studying Contemporary Malware….
0
3
0
Great research by our talented colleague Nate!.
Cado Security Labs researchers discover #novel #malware campaign that deploys the #9hits application as a #payload. 🔎 Full analysis here: #cloudsecurity #cloudforensics #cloudIR #threatresearch #threatintelligence #cloudincidentresponse.
0
0
3
Continuing to follow this Rust botnet! A new #p2pinfect sample targeting MIPS.
New discovery by Cado Security Labs. A new #P2Pinfect variant demonstrating increased targeting of Microprocessor without Interlocked Pipelined Stages (MIPS) including routers and IoT. Full analysis here: #threatintelligence #threatresearch #cloudsecurity.
0
0
2