Threat Research for the cloud

Netskope Threat Research Labs finds and analyzes the latest cloud threats


Netskope Threat Research Labs


Staffed by the industry’s foremost cloud threat and malware researchers, the Netskope Threat Research Labs discovers and analyzes the latest cloud threats affecting enterprises. With original research and in-depth analysis on cloud malware, new strains of ransomware, and other cloud-related threats, the Labs helps protect Netskope customers from malicious actors and contributes to the global security community with research, advice, and best practices.

Led by renowned security researchers, distinguished engineers, and principal architects with experience founding and leading companies in Silicon Valley and around the world, the Netskope Threat Research Labs is based in our headquarters in California and with satellite locations in Canada and India.


Google Doc CloudPhishing Worm Attack Technical Analysis

The Internet was buzzing over a rapidly spreading attack involving malicious apps masquerading as Google Docs which gained permission to victims’ Google Gmail accounts and extracted confidential information. The Netskope Threat Research Labs provides an overview of the attack findings, its impact on users and best practices for quick remediation.

Read the blog

Latest Microsoft Office Zero-day Served via Godzilla Botnet

Netskope Threat Research Labs has discovered that the latest Microsoft Office zero-day vulnerability is linked to the Godzilla botnet loader. Check out this post for some recommendations to combat cloud-based malware threats.

Read the blog

Cloudbleed: Analysis of apps affected and what you can do about it

The Netskope Threat Research Labs team performed an in-depth analysis of the impact of Cloudbleed bug on cloud applications and the risk it poses for enterprises.

Read the blog

Virlock’s resurgence poses bigger threat to file syncing over the cloud

Netskope Threat Research Labs explains how the Virlock infection possesses a bigger threat to an enterprise environment where cloud storage services are used for collaboration. Take a look at the post to learn best practices for enterprises to protect from ransomware threats.

Read the blog

Decoys, Phishing, and the Cloud: The Latest Fan-out Effect

In yet another discovery of the cloud malware fan-out, Netskope Threat Research Labs analyzes phishing attacks using decoy PDF files, URL redirection, and Cloud Storage services to infect users and propagate malware.

Read the blog

Technical Analysis: CloudSquirrel Malware

Netskope Threat Research Labs discovers and analyzes CloudSquirrel, an attack that takes advantage of popular cloud services to exfiltrate usernames and passwords and organizations’ lack of SSL inspection to pass through to the corporate network undetected.

Read the blog

We discover and analyze new cloud-first threats continuously.

Visit Our Security Blog