APT Archives - Page 15 of 21

Guest
APT
November 24, 2024

New SteelFox Trojan mimics software activators, stealing sensitive data and mining cryptocurrency

CategoryDetailsThreat ActorsUnattributed (Crimeware authors behind "SteelFox").Campaign OverviewSteelFox crimeware bundle distributed via malicious torrents and forums,…

Guest
APT
November 24, 2024

Cloudy With a Chance of RATs: Unveiling APT36 and the Evolution of ElizaRAT

CategoryDetailsThreat ActorsAPT36 (Transparent Tribe)Campaign OverviewTargeting Indian government organizations, diplomatic personnel, and military facilities. Focus on…

Guest
APT
November 24, 2024

Best Laid Plans: TA453 Targets Religious Figure with Fake Podcast Invite Delivering New BlackSmith Malware Toolset

CategoryDetailsThreat ActorsIranian Threat actor TA453 (Charming Kitten), likely supporting Iranian government interests, specifically the IRGC…

Guest
APT
November 24, 2024

Threat Actor Abuses Gophish to Deliver New PowerRAT and DCRAT

CategoryDetailsThreat ActorsUnknown Threat actor using Open-Source Gophish ToolkitCampaign OverviewPhishing campaign using modular infection chains (Maldoc…

Guest
APT
November 24, 2024

Beyond the Surface: the evolution and expansion of the SideWinder APT group

CategoryDetailsThreat ActorsSideWinder (also T-APT-04, RattleSnake)Campaign OverviewProlific APT group active since 2012, targeting military & government…

Guest
APT
November 24, 2024

The Crypto Game of Lazarus APT: Investors vs. Zero-days

CategoryDetailsThreat ActorsLazarus APT, BlueNoroff subgroupCampaign OverviewAttackers used a fake decentralized finance (DeFi) NFT-based tank game…

Guest
APT
November 24, 2024

Threat Spotlight: WarmCookie/BadSpace

CategoryDetailsThreat ActorsTA866 (also known as Asylum Ambuscade)Campaign OverviewWarmCookie is distributed through malspam and malvertising campaigns…

Guest
APT
November 24, 2024

Analysis of the Crypt Ghouls group: continuing the investigation into a series of attacks on Russia

CategoryDetailsThreat ActorsCrypt GhoulsCampaign OverviewTargeted Russian businesses and government agencies with ransomware.Target Regions (Or Victims)Russian businesses…

Guest
APT
November 24, 2024

UAT-5647 targets Ukrainian and Polish entities with RomCom malware variants

CategoryDetailsThreat ActorsUAT-5647 (also known as RomCom) - Russian-speaking groupCampaign OverviewActive since late 2023, targeting Ukrainian…

Guest
APT
November 24, 2024

Stealer here, stealer there, stealers everywhere!

CategoryDetailsThreat ActorsCybercriminals distributing information stealers, often via subscription services for novice hackers.Campaign OverviewDistribution of information…

APT

New SteelFox Trojan mimics software activators, stealing sensitive data and mining cryptocurrency

Cloudy With a Chance of RATs: Unveiling APT36 and the Evolution of ElizaRAT

Best Laid Plans: TA453 Targets Religious Figure with Fake Podcast Invite Delivering New BlackSmith Malware Toolset

Threat Actor Abuses Gophish to Deliver New PowerRAT and DCRAT

Beyond the Surface: the evolution and expansion of the SideWinder APT group

The Crypto Game of Lazarus APT: Investors vs. Zero-days

Threat Spotlight: WarmCookie/BadSpace

Analysis of the Crypt Ghouls group: continuing the investigation into a series of attacks on Russia

UAT-5647 targets Ukrainian and Polish entities with RomCom malware variants

Stealer here, stealer there, stealers everywhere!

Stay Updated with Our Newsletter

Featured

Threat Actor Interview: Spotlighting on Pryx – Admin of the Hellcat Ransomware Group

Threat Actor Interview: Spotlighting on Funksec Ransomware Group

Filter Posts by Date

Recent Posts

Explore Topics

Press ESC to close

APT

Stay Updated with Our Newsletter

Featured

Filter Posts by Date

Recent Posts

Explore Topics