Logo
Unit42 Logo
  • Tools
  • ATOMs
  • Security Consulting
  • About Us
  • Under Attack?

Posts created by: Bryan Lee

APT41 Using New Speculoos Backdoor to Target Organizations Globally
46,885
people reacted

APT41 Using New Speculoos Backdoor to Target Organizations Globally

  • By Bryan Lee, Robert Falcone and Jen Miller-Osborn
  • April 13, 2020 at 5:45 PM

51

7 min. read

Molerats Delivers Spark Backdoor to Government and Telecommunications Organizations
56,822
people reacted

Molerats Delivers Spark Backdoor to Government and Telecommunications Organizations

  • By Robert Falcone, Bryan Lee and Alex Hinchliffe
  • March 3, 2020 at 6:00 AM

42

28 min. read

Trending

  • Threat Group Assessment: Muddled Libra (Updated) by Unit 42
  • Unit 42 Attack Surface Threat Research: Constant Change in Cloud Contributes to 45% of New High/Critical Exposures Per Month by Unit 42
  • Wireshark Tutorial: Display Filter Expressions by Brad Duncan
  • Fake CVE-2023-40477 Proof of Concept Leads to VenomRAT by Robert Falcone
  • Unit 42 Researchers Discover Multiple Espionage Operations Targeting Southeast Asian Government by Robert Falcone
Cortex XDR™ Detects New Phishing Campaign Installing NetSupport Manager RAT
43,407
people reacted

Cortex XDR™ Detects New Phishing Campaign Installing NetSupport Manager RAT

  • By Mike Harbison, Brittany Barbehenn and Bryan Lee
  • February 27, 2020 at 6:00 AM

34

9 min. read

TrickBot Campaign Uses Fake Payroll Emails to Conduct Phishing Attacks
39,026
people reacted

TrickBot Campaign Uses Fake Payroll Emails to Conduct Phishing Attacks

  • By Bryan Lee, Brittany Barbehenn and Mike Harbison
  • December 9, 2019 at 6:00 AM

26

7 min. read

Behind the Scenes with OilRig
79,762
people reacted

Behind the Scenes with OilRig

  • By Bryan Lee and Robert Falcone
  • April 30, 2019 at 6:00 AM

4

24 min. read

DarkHydrus delivers new Trojan that can use Google Drive for C2 communications

  • By Robert Falcone and Bryan Lee
  • January 18, 2019 at 10:40 AM

15

14 min. read

Dear Joohn: The Sofacy Group’s Global Campaign

  • By Bryan Lee and Robert Falcone
  • December 12, 2018 at 6:00 AM

3

14 min. read

61,441
people reacted

Sofacy Continues Global Attacks and Wheels Out New ‘Cannon’ Trojan

  • By Robert Falcone and Bryan Lee
  • November 20, 2018 at 6:00 AM

8

13 min. read

43,709
people reacted

New KONNI Malware attacking Eurasia and Southeast Asia

  • By Josh Grunzweig and Bryan Lee
  • September 27, 2018 at 8:00 AM

3

10 min. read

58,080
people reacted

OilRig targets a Middle Eastern Government and Adds Evasion Techniques to OopsIE

  • By Robert Falcone, Bryan Lee and Riley Porter
  • September 4, 2018 at 1:00 PM

7

9 min. read

79,106
people reacted

New Threat Actor Group DarkHydrus Targets Middle East Government

  • By Robert Falcone, Bryan Lee and Tom Lancaster
  • July 27, 2018 at 4:15 PM

11

9 min. read

OilRig Targets Technology Service Provider and Government Agency with QUADAGENT

  • By Bryan Lee and Robert Falcone
  • July 25, 2018 at 5:00 AM

1

14 min. read

91,060
people reacted

Sofacy Group’s Parallel Attacks

  • By Bryan Lee and Robert Falcone
  • June 6, 2018 at 5:00 AM

13

11 min. read

95,885
people reacted

Sofacy Attacks Multiple Government Entities

  • By Bryan Lee, Mike Harbison and Robert Falcone
  • February 28, 2018 at 10:00 AM

13

12 min. read

65,286
people reacted

OopsIE! OilRig Uses ThreeDollars to Deliver New Trojan

  • By Bryan Lee and Robert Falcone
  • February 23, 2018 at 5:00 AM

9

11 min. read

Popular Resources

  • Resource Center
  • Blog
  • Communities
  • Tech Docs
  • Unit 42
  • Sitemap

Legal Notices

  • Privacy
  • Terms of Use
  • Documents

Account

  • Manage Subscriptions
  •  
  • Report a Vulnerability

© 2023 Palo Alto Networks, Inc. All rights reserved.