Post by VMRay

🇺🇸 Threat actors have learned to hide their command-and-control traffic where no one wants to block it: inside the SaaS platforms everyone uses. Telegram. Discord. Steam. Legitimate services, carrying malicious instructions, blending into traffic a SOC can't simply cut off. At the #FIRSTCON26 in Denver (June 14-19), Patrick Staubmann from VMRay's Threat Analysis team, will present ongoing research into exactly this: e-crime #malware families that abuse collaboration and gaming platforms for C2, exfiltration, and dead-drop resolving. Brandi Kelly, Tyler Hennessy and Robert Philkill from #teamVMRAY will also be at the event to talk about what deep, evasion-resistant analysis adds to incident response, how the full attack chain gets reconstructed from a single sample, and how high-fidelity intelligence supports the teams doing the hardest part of the work. If you're attending, let's have a conversation. #FIRSTCON26 #IncidentResponse #DFIR #ThreatIntelligence