Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400 (Updated April 25) 98,561 people reacted Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400 (Updated April 25) By Unit 42 April 12, 2024 at 10:00 AM 178 12 min. read
It Was Not Me! Malware-Initiated Vulnerability Scanning Is on the Rise 4,773 people reacted It Was Not Me! Malware-Initiated Vulnerability Scanning Is on the Rise By Beliz Kaleli, Fang Liu, Peng Peng, Alex Starov, Joey Allen and Stefan Springer April 8, 2024 at 3:00 PM 22 8 min. read
Curious Serpens’ FalseFont Backdoor: Technical Analysis, Detection and Prevention 4,741 people reacted Curious Serpens’ FalseFont Backdoor: Technical Analysis, Detection and Prevention By Tom Fakterman, Daniel Frank and Jerome Tujague March 21, 2024 at 3:00 AM 8 12 min. read
Unit 42 Collaborative Research With Ukraine’s Cyber Agency To Uncover the Smoke Loader Backdoor 3,859 people reacted Unit 42 Collaborative Research With Ukraine’s Cyber Agency To Uncover the Smoke Loader Backdoor By Unit 42 March 19, 2024 at 3:00 AM 19 4 min. read
Wireshark Tutorial: Exporting Objects From a Pcap 222,438 people reacted Wireshark Tutorial: Exporting Objects From a Pcap By Brad Duncan March 1, 2024 at 6:00 AM 133 12 min. read
Intruders in the Library: Exploring DLL Hijacking 4,738 people reacted Intruders in the Library: Exploring DLL Hijacking By Tom Fakterman, Chen Erlich and Assaf Dahan February 22, 2024 at 4:00 PM 12 14 min. read
Threat Brief: ConnectWise ScreenConnect Vulnerabilities (CVE-2024-1708 and CVE-2024-1709) 6,802 people reacted Threat Brief: ConnectWise ScreenConnect Vulnerabilities (CVE-2024-1708 and CVE-2024-1709) By Unit 42 February 21, 2024 at 5:00 PM 7 5 min. read
New Vulnerability in QNAP QTS Firmware: CVE-2023-50358 5,080 people reacted New Vulnerability in QNAP QTS Firmware: CVE-2023-50358 By Chao Lei, Jeff Luo and Zhibin Zhang February 13, 2024 at 3:00 AM 8 5 min. read
Diving Into Glupteba's UEFI Bootkit 6,806 people reacted Diving Into Glupteba's UEFI Bootkit By Lior Rochberger and Dan Yashnik February 12, 2024 at 6:00 AM 12 12 min. read
Ransomware Retrospective 2024: Unit 42 Leak Site Analysis 10,094 people reacted Ransomware Retrospective 2024: Unit 42 Leak Site Analysis By Doel Santos February 5, 2024 at 3:00 AM 18 17 min. read
Parrot TDS: A Persistent and Evolving Malware Campaign 7,084 people reacted Parrot TDS: A Persistent and Evolving Malware Campaign By Zhanglin He, Ben Zhang, Billy Melicher, Qi Deng, Bo Qu and Brad Duncan January 19, 2024 at 12:00 PM 36 12 min. read
Threat Brief: Multiple Ivanti Vulnerabilities (Updated Feb. 29) 23,418 people reacted Threat Brief: Multiple Ivanti Vulnerabilities (Updated Feb. 29) By Unit 42 January 16, 2024 at 3:30 PM 88 19 min. read
Fighting Ursa Aka APT28: Illuminating a Covert Campaign 12,674 people reacted Fighting Ursa Aka APT28: Illuminating a Covert Campaign By Unit 42 December 7, 2023 at 6:00 AM 48 6 min. read
Hacking Employers and Seeking Employment: Two Job-Related Campaigns Bear Hallmarks of North Korean Threat Actors 18,703 people reacted Hacking Employers and Seeking Employment: Two Job-Related Campaigns Bear Hallmarks of North Korean Threat Actors By Unit 42 November 21, 2023 at 6:00 AM 122 17 min. read
High Traffic + High Vulnerability = an Attractive Target for Criminals: The Dangers of Viewing Clickbait Sites 4,515 people reacted High Traffic + High Vulnerability = an Attractive Target for Criminals: The Dangers of Viewing Clickbait Sites By Shresta Bellary Seetharam, Tao Yan, Nabeel Mohamed, Tim Hofmockel, Alex Starov and Brad Duncan November 9, 2023 at 12:00 PM 52 8 min. read