- Open Threat Exchange
AT&T Alien Labs
Timely, tactical cyber threat intelligence
powered by AT&T
Driving resilient threat detection and response
Our continuously updated, integrated threat intelligence helps you more quickly prioritize and address the critical threats targeting your business.
Delivering deep insight into adversaries and attacks
Our researchers use advanced analytics and machine learning to analyze one of the largest collections of threat data in the world, so you can stay ahead of evolving threats.
Automating proactive threat hunting
We write and update the correlation rules and threat indicators needed to continuously detect and prevent attacks.
From the Alien Labs Blog
Jaime Blasco and Chris Doman collaborated on this blog. Overview: Recently, AT&T Alien Labs identified a new malware family that is actively scanning for exposed web services and default passwords. Based on our findings we are calling it “Xwo” - taken from its primary module name. It is likely related to the previously reported malware families…
This is a guest post by independent security researcher James Quinn. This will be Part 1 of a series titled Reversing Gh0stRAT Variants. As 2018 drew to a close and 2019 took over, I began to see a different behavior from SMB malware authors. Instead of massive, multi-staged cryptocurrency miners, I began to see more small, covert RATs serving…
From the Office of the AT&T Chief Security Office (CSO)
Boom barque marooned spanker lanyard red ensign topmast heave to lee tackle. Shiver me timbers pink man-of-war Brethren of the Coast barque tender maroon rope's end plunder aft. Line measured fer yer chains marooned parley come about careen red ensign spirits jack lugger. Take a caulk aye starboard quarter driver weigh anchor gangway grog doubloon handsomely. Ye driver draught…
Exceeding reaction chamber thermal limit. We have begun power-supply calibration. Force fields have been established on all turbo lifts and crawlways. Computer, run a level-two diagnostic on warp-drive systems. Antimatter containment positive. Warp drive within normal parameters. I read an ion trail characteristic of a freighter escape pod. The bomb had a molecular-decay detonator. Detecting some unusual fluctuations in subspace…