-
Guest - Cyber Crime
- January 15, 2025
Deep Dive Into a Linux Rootkit Malware
Section Details Threat Actors Remote attackers (unknown identity) Campaign Overview Attackers exploited multiple vulnerabilities in…
DarkVision RAT: A Persistent Threat Delivered via PureCrypter
Category Details Threat Actors • Unknown threat actors using DarkVision RAT with PureCrypter loader. Campaign…
Ukraine’s state registers hit with one of Russia’s largest cyberattacks, officials say
Category Details Threat Actors - Suspected Russian hackers, likely tied to GRU - Sandworm APT…
Lazarus Group Spotted Targeting Nuclear Engineers with CookiePlus Malware
Category Details Threat Actors - Lazarus Group (DPRK-linked) Campaign Overview - Targeted nuclear-related organization employees…
Phishing platform Rockstar 2FA trips, and “FlowerStorm” picks up the pieces
Category Details Threat Actors Rockstar2FA, FlowerStorm (possibly related to Storm-1575, Tycoon) Campaign Overview Disruption of…
Sandworm-linked hackers target users of Ukraine’s military app in new spying campaign
Category Details Threat Actors Sandworm (linked to Russian military intelligence, GRU), UAC-0125, APT44 Campaign Overview…
Lazarus group evolves its infection chain with old and new malware
Category Details Threat Actors Lazarus Group (North Korean state-sponsored) Campaign Overview DeathNote campaign (also called…
UAC-0125 Abuses Cloudflare Workers to Distribute Malware Disguised as Army+ App
Category Details Threat Actors UAC-0125 (linked to APT44, FROZENBARENTS, Sandworm, Seashell Blizzard, Voodoo Bear, GRU…
The Mask APT Resurfaces with Sophisticated Multi-Platform Malware Arsenal
Category Details Threat Actors The Mask (aka Careto) Campaign Overview Attacks in 2019 and 2022…
APT PROFILE – EARTH ESTRIES
CategoryDetailsThreat Actors- Earth Estries- Aliases: Famous Sparrow, Ghost Emperor, Salt Typhoon, UNC2286Campaign Overview- Advanced cyber…
