OSINT Updates for November 8, 2024

https://twitter.com/Unit42_Intel/status/1854550444778881160 https://twitter.com/RakeshKrish12/status/1854775107371028965 https://twitter.com/P4nd3m1cb0y/status/1854661858491302139 https://twitter.com/Gootloader/status/1854533704057594108 https://twitter.com/KrakenLabs_Team/status/1854476333759271105

Understanding the DuckTail Threat Actor’s Recent Attacks on Middle East

CategoryDetailsThreat ActorsDuckTail (Vietnam-based)Campaign OverviewTargeting digital marketing firms, primarily in the Middle East, using phishing, social…

Dark Web Profile: Tropic Trooper (APT23)

FieldDetailsThreat ActorsTropic Trooper (APT23), also known as Pirate Panda, Iron, KeyBoy, Bronze Hobart, Earth CentaurCampaign…

North Korea allegedly targeting crypto businesses with Mac-focused malware

CategoryDetailsThreat ActorsBlueNoroff, a subgroup of Lazarus, attributed to North Korea's Reconnaissance General Bureau (RGB).Campaign Overview"Hidden…

HrServ – Previously unknown web shell used in APT attack

CategoryDetailsThreat ActorsUnknown threat actor; possibly a non-native English speaker; potential connection to Traditional Chinese language…

Threat actors use copyright infringement phishing lure to deploy infostealers

Category Details Threat Actors Unknown actor targeting Facebook business and advertising account users in Taiwan.…

Unwrapping the emerging Interlock ransomware attack

Category Details Threat Actors Interlock Ransomware Group, possibly emerged from Rhysida Ransomware operators Campaign Overview…

Threat actor abuses Gophish to deliver new PowerRAT and DCRAT

Category Details Threat Actors Unknown threat actor Campaign Overview Phishing campaign using Gophish toolkit; delivers…

China-linked hackers tasked with Japanese targets pursue them through Europe

Category Details Threat Actors MirrorFace, a China-linked hacking group. Campaign Overview Expansion of operations to…

OSINT Investigation: Hunting Malicious Infrastructure Linked to Transparent Tribe

Category Details Threat Actors Transparent Tribe (APT36), Pakistan-based, active since at least 2013. Known for…

Stay Updated with Our Newsletter

Filter Posts by Date

Explore Topics