Advanced Persistent Threat Targeting Vietnamese Human Rights Defenders | Huntress

FieldDetailsThreat ActorsAPT32 Campaign OverviewAdvanced persistent threat targeting oil and energy sectors, stealing intellectual property, and…

Avast Q1/2024 Threat Report

Category Details Threat Actors Unknown actors targeting XZ/liblzma; Lazarus Group; operators of Twizt, DDosia, and…

LightSpy Malware Variant Targeting macOS | Huntress

Category Details Threat Actors Unknown actors using LightSpy framework Campaign Overview Analysis of a macOS…

ToddyCat is making holes in your infrastructure

Category Details Threat Actors ToddyCat (APT group) Campaign Overview Attackers target governmental organizations, some defense-related,…

DuneQuixote campaign targets Middle Eastern entities with “CR4T” malware

Category Details Threat Actors Unnamed group behind the "DuneQuixote" campaign Campaign Overview Targets government entities…

Lazarus and the FudModule Rootkit: Beyond BYOVD with an Admin-to-Kernel Zero-Day

CategoryDetailsThreat ActorsLazarus GroupCampaign OverviewExploitation of a zero-day vulnerability in the appid.sys AppLocker driver to gain…

Comrades in Arms? | North Korea Compromises Sanctioned Russian Missile Engineering Company

Category Details Threat Actors ScarCruft (APT37, Inky Squid, Group123), Lazarus Group Campaign Overview Compromise of…

Top-Ranking Banking Trojan Ramnit out to steal payment card data

Category Details Threat Actors Ramnit Gang Campaign Overview Ongoing campaigns targeting e-commerce brands and hospitality…

Trickbot Rising — Gang doubles down on infection efforts to amass network Footholds

CategoryDetailsThreat ActorsITG23 (TrickBot Gang/Wizard Spider), Hive0105 (BazarCall), Hive0106 (TA551/Shathak/UNC2420), Hive0107Campaign OverviewAggressive malware distribution expansion targeting…