Curious Serpens’ FalseFont Backdoor: Technical Analysis, Detection and Prevention 4,577 people reacted Curious Serpens’ FalseFont Backdoor: Technical Analysis, Detection and Prevention By Tom Fakterman, Daniel Frank and Jerome Tujague March 21, 2024 at 3:00 AM 8 12 min. read
New Tool Set Found Used Against Organizations in the Middle East, Africa and the US 12,637 people reacted New Tool Set Found Used Against Organizations in the Middle East, Africa and the US By Chema Garcia December 1, 2023 at 3:00 AM 49 14 min. read
Over the Kazuar’s Nest: Cracking Down on a Freshly Hatched Backdoor Used by Pensive Ursa (Aka Turla) 8,009 people reacted Over the Kazuar’s Nest: Cracking Down on a Freshly Hatched Backdoor Used by Pensive Ursa (Aka Turla) By Daniel Frank and Tom Fakterman October 31, 2023 at 6:00 AM 14 20 min. read
Rare Backdoors Suspected to be Tied to Gelsemium APT Found in Targeted Attack in Southeast Asian Government 6,581 people reacted Rare Backdoors Suspected to be Tied to Gelsemium APT Found in Targeted Attack in Southeast Asian Government By Lior Rochberger, Tom Fakterman and Robert Falcone September 22, 2023 at 6:05 AM 27 8 min. read
Cyberespionage Attacks Against Southeast Asian Government Linked to Stately Taurus, Aka Mustang Panda 7,817 people reacted Cyberespionage Attacks Against Southeast Asian Government Linked to Stately Taurus, Aka Mustang Panda By Lior Rochberger, Tom Fakterman and Robert Falcone September 22, 2023 at 6:03 AM 19 12 min. read
Chinese Playful Taurus Activity in Iran 76,605 people reacted Chinese Playful Taurus Activity in Iran By Unit 42 January 18, 2023 at 3:00 AM 67 9 min. read
Threat Brief: OWASSRF Vulnerability Exploitation 65,563 people reacted Threat Brief: OWASSRF Vulnerability Exploitation By Robert Falcone and Lior Rochberger December 22, 2022 at 5:30 PM 15 9 min. read
GALLIUM Expands Targeting Across Telecommunications, Government and Finance Sectors With New PingPull Tool 77,667 people reacted GALLIUM Expands Targeting Across Telecommunications, Government and Finance Sectors With New PingPull Tool By Unit 42 June 13, 2022 at 3:00 AM 43 10 min. read
Popping Eagle: How We Leveraged Global Analytics to Discover a Sophisticated Threat Actor 46,444 people reacted Popping Eagle: How We Leveraged Global Analytics to Discover a Sophisticated Threat Actor By Yuval Zan and Chen Evgi June 2, 2022 at 3:00 PM 24 12 min. read
New SolarMarker (Jupyter) Campaign Demonstrates the Malware’s Changing Attack Patterns 52,423 people reacted New SolarMarker (Jupyter) Campaign Demonstrates the Malware’s Changing Attack Patterns By Shimi Cohen, Inbal Shalev and Irena Damsky April 8, 2022 at 6:00 PM 299 8 min. read
SockDetour – a Silent, Fileless, Socketless Backdoor – Targets U.S. Defense Contractors 61,214 people reacted SockDetour – a Silent, Fileless, Socketless Backdoor – Targets U.S. Defense Contractors By Unit 42 February 24, 2022 at 6:00 AM 20 9 min. read
Targeted Attack Campaign Against ManageEngine ADSelfService Plus Delivers Godzilla Webshells, NGLite Trojan and KdcSponge Stealer 115,684 people reacted Targeted Attack Campaign Against ManageEngine ADSelfService Plus Delivers Godzilla Webshells, NGLite Trojan and KdcSponge Stealer By Robert Falcone, Jeff White and Peter Renals November 7, 2021 at 6:00 PM 70 18 min. read
xHunt Campaign: Newly Discovered Backdoors Using Deleted Email Drafts and DNS Tunneling for Command and Control 50,725 people reacted xHunt Campaign: Newly Discovered Backdoors Using Deleted Email Drafts and DNS Tunneling for Command and Control By Robert Falcone November 9, 2020 at 12:00 AM 35 12 min. read
51,720 people reacted The New and Improved macOS Backdoor from OceanLotus By Erye Hernandez and Danny Tsechansky June 22, 2017 at 10:00 AM 12 9 min. read