Monthly Adversary Tradecraft Spotlight – June

Monthly Adversary Tradecraft Spotlight – June

OpenWith.exe Executes Specified Binary This technique leverages OpenWith.exe as a proxy execution mechanism to run arbitrary code while blending in with legitimate system activity. It is a trusted Windows binary that is typically used when a user selects “Open with…”...

read more
“Black Cell chose me” – Viki’s Story

“Black Cell chose me” – Viki’s Story

Why did you choose BlackCell? How did you decide you wanted to work here?Actually, I didn’t choose Black Cell at first – Black Cell chose me. A dear friend of mine – who is now also a colleague – who had been working at the company for a while, reached out to ask if...

read more