• APT
  • October 2, 2024
Bulbature, beneath the waves of GobRAT

Category Details Threat Actors Likely Chinese origin, as inferred from traces and victimology Campaign Overview…

Advanced Persistent Threat Targeting Vietnamese Human Rights Defenders | Huntress

FieldDetailsThreat ActorsAPT32 Campaign OverviewAdvanced persistent threat targeting oil and energy sectors, stealing intellectual property, and…

Smuggler’s Gambit: Uncovering HTML Smuggling Adversary in the Middle Tradecraft | Huntress

CategoryDetailsThreat ActorsUnknown; potentially a new Phishing-as-a-Service framework.Campaign OverviewMass phishing campaign combining HTML smuggling, Iframe injection,…

Avast Q1/2024 Threat Report

Category Details Threat Actors Unknown actors targeting XZ/liblzma; Lazarus Group; operators of Twizt, DDosia, and…

LightSpy Malware Variant Targeting macOS | Huntress

Category Details Threat Actors Unknown actors using LightSpy framework Campaign Overview Analysis of a macOS…

ToddyCat is making holes in your infrastructure

Category Details Threat Actors ToddyCat (APT group) Campaign Overview Attackers target governmental organizations, some defense-related,…

DuneQuixote campaign targets Middle Eastern entities with “CR4T” malware

Category Details Threat Actors Unnamed group behind the "DuneQuixote" campaign Campaign Overview Targets government entities…

Lazarus and the FudModule Rootkit: Beyond BYOVD with an Admin-to-Kernel Zero-Day

CategoryDetailsThreat ActorsLazarus GroupCampaign OverviewExploitation of a zero-day vulnerability in the appid.sys AppLocker driver to gain…

BlackCat Ransomware Affiliate TTPs | Huntress

Category Details Threat Actors ALPHV/BlackCat Ransomware group, using Ransomware-as-a-service (RaaS). Campaign Overview Attack targeting healthcare…

Decrypted: HomuWitch Ransomware

Category Details Threat Actors No specific group identified; HomuWitch ransomware targets individual end-users. Campaign Overview…

Stay Updated with Our Newsletter

Filter Posts by Date

Explore Topics