SECUINFRA Falcon Team

Digital Forensics & Incident Response experts

The SECUINFRA Falcon Team is specialized in the areas of Digital Forensics (DF) and Incident Response (IR). This includes classic host-based forensics, but also topics such as malware analysis or compromise assessment.
In addition to the activities for which we are responsible within the scope of customer orders, the Falcon team is also responsible for the operation, further development and research of various projects and topics in the DF/IR area. These include, for example, threat intelligence or the creation of detection rules based on Yara.

Xing Linkedin Twitter

Whatever floats your Boat – Bitter APT continues to target Bangladesh

SECUINFRA Falcon Team • 05.07.2022 | Cyber Defense | Network
The SECUINFRA Falcon Team analyzed a recent attack conducted by the south-Asian Advanced Persistent Threat group „Bitter“.
Read more

What types of malware are there and how do I protect myself from them?

SECUINFRA Falcon Team • 16.05.2022 | Cyber Defense
With the plethora of daily threats, an organization's cybersecurity teams need to be able to respond immediately and efficiently to existing threat situations.
Read more

What is a Compromise Assessment and when is it useful? 5 FAQs

SECUINFRA Falcon Team • 21.04.2022 | Compromise Assessment
What can you do now to uncover existing compromises of your network in a timely manner and thus avert massive financial damage and reputational risks from your company? With a Compromise Assessment (CA), an effective investigation method is available that makes hidden attack activities in your network visible.
Read more

Digital Forensics: How to ensure prompt and efficient resolution of successful cyberattacks

SECUINFRA Falcon Team • 08.03.2022 | Digital Forensics
The registered number of IT security incidents as a result of the rapid development of new and adapted cyber attack methods is worrying - and can sometimes have serious financial consequences as well as reputational damage for companies.
Read more

N-W0rm analysis (Part 2)

SECUINFRA Falcon Team • 04.02.2022 | Digital Forensics | Incident Response
We will first begin at the entry point of this RAT and analyze its executed code before we jump into all possible modules this RAT possesses.
Read more

N-W0rm analysis (Part 1)

SECUINFRA Falcon Team • 01.02.2022 | Digital Forensics | Incident Response
According to Malware Bazaar, samples have been distributed since around mid-January. The final payload is a .NET RAT, which allows the attacker to send commands to the infected system.
Read more

Reporting obligations in the event of an IT security incident

SECUINFRA Falcon Team • 15.10.2021 | Digital Forensics | Incident Response
This article is intended to provide a deeper insight into the important topic of reporting obligations in the event of an IT security incident.
Read more

Digital threat: Phishing

SECUINFRA Falcon Team • 05.10.2021 | Digital Forensics | Incident Response
In order to protect one's own company against phishing, awareness must first and foremost be created among employees. This can be done through workshops, phishing simulation or company policies.
Read more

Incident Response Process Models using the Example of the Federal Office for Information Security (BSI)

SECUINFRA Falcon Team • 17.09.2021 | Incident Response
BSI has set up a model that divides the procedure into 6 different phases, which is very finely granulated compared to other models.
Read more

Digital Threats: Ransomware

SECUINFRA Falcon Team • 02.09.2021 | Incident Response
In order to shed some light on the subject, we would like to look at a few facts and figures about ransomware as well as a typical course of attack.
Read more