<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>Anna Širokova &#8211; Noise</title>
	<atom:link href="https://noise.getoto.net/author/anna-sirokova/feed/" rel="self" type="application/rss+xml" />
	<link>https://noise.getoto.net</link>
	<description>The collective thoughts of the interwebz</description>
	<lastBuildDate>Thu, 22 May 2025 12:00:00 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=6.8.2</generator>
	<item>
		<title>NSIS Abuse and sRDI Shellcode: Anatomy of the Winos 4.0 Campaign</title>
		<link>https://noise.getoto.net/2025/05/22/nsis-abuse-and-srdi-shellcode-anatomy-of-the-winos-4-0-campaign/</link>
		
		<dc:creator><![CDATA[Anna Širokova]]></dc:creator>
		<pubDate>Thu, 22 May 2025 12:00:00 +0000</pubDate>
				<category><![CDATA[Labs]]></category>
		<category><![CDATA[Malware]]></category>
		<category><![CDATA[research]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=e5222165da12733735fb6b8bc6d0ba29</guid>

					<description><![CDATA[Rapid7 has been tracking a malware campaign that uses fake software installers disguised as popular apps like VPN and QQBrowser—to deliver Winos v4.0, a hard-to-detect malware that runs entirely in memory and gives attackers remote access.]]></description>
		
		
		<enclosure url="https://blog.rapid7.com/content/images/2025/05/GettyImages-1307354522.jpg" length="0" type="" />

			</item>
		<item>
		<title>A Bag of RATs: VenomRAT vs. AsyncRAT</title>
		<link>https://noise.getoto.net/2024/11/21/a-bag-of-rats-venomrat-vs-asyncrat/</link>
		
		<dc:creator><![CDATA[Anna Širokova]]></dc:creator>
		<pubDate>Thu, 21 Nov 2024 17:19:50 +0000</pubDate>
				<category><![CDATA[Malware]]></category>
		<category><![CDATA[research]]></category>
		<category><![CDATA[Threat Intel]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=fde74b553faeea9623dd0b5575177029</guid>

					<description><![CDATA[Remote access tools (RATs) have long been a favorite tool for cyber attackers, since they enable remote control over compromised systems and facilitate data theft, espionage, and continuous monitoring of victims. Among the well-known RATs are VenomRAT and AsyncRAT.]]></description>
		
		
		<enclosure url="https://blog.rapid7.com/content/images/2024/11/GettyImages-2167356719.jpg" length="0" type="" />

			</item>
		<item>
		<title>Exploring the (Not So) Secret Code of Black Hunt Ransomware</title>
		<link>https://noise.getoto.net/2024/02/05/exploring-the-not-so-secret-code-of-black-hunt-ransomware/</link>
		
		<dc:creator><![CDATA[Anna Širokova]]></dc:creator>
		<pubDate>Mon, 05 Feb 2024 19:08:15 +0000</pubDate>
				<category><![CDATA[ransomware]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=ad81b8ac3ba63d8024571a2656967360</guid>

					<description><![CDATA[In this analysis we examined the BlackHunt sample shared on X (formerly Twitter). During our analysis we found notable similarities between BlackHunt ransomware and LockBit, which suggested that it uses leaked code of Lockbit. In addition, it uses some techniques similar to REvil ransomware.]]></description>
		
		
		<enclosure url="https://blog.rapid7.com/content/images/2024/02/GettyImages-1128503636.jpg" length="0" type="" />

			</item>
	</channel>
</rss>

<!--
Performance optimized by W3 Total Cache. Learn more: https://www.boldgrid.com/w3-total-cache/

Object Caching 25/77 objects using Memcached
Page Caching using Disk: Enhanced 
Lazy Loading (feed)
Database Caching using Memcached

Served from: noise.getoto.net @ 2026-02-07 12:02:27 by W3 Total Cache
-->