Cortex XSIAM Archives

A pictorial representation of Stately Taurus. The head of a bull inset on a red circle. The constellation of taurus. These elements are surrounded by a starry night sky.

7,012

people reacted

Stately Taurus Targets the Philippines As Tensions Flare in the South Pacific

By Unit 42
November 17, 2023 at 3:00 AM

6 min. read

A pictorial representation of a Chinese APT targeting Cambodian government entities. A world map with location markers. Around it are icon of types of attacks: bugs, hacking, and other indicators of tools such as graphs.

9,212

people reacted

Chinese APT Targeting Cambodian Government

By Unit 42
November 7, 2023 at 9:01 PM

5 min. read

Pictorial representation of the APT Agonizing Serpens. An illustrated orange and red snake is highlighted by a red circle against a night sky. The constellation serpens.

9,443

people reacted

Agonizing Serpens (Aka Agrius) Targeting the Israeli Higher Education and Tech Sectors

By Or Chechik, Tom Fakterman, Daniel Frank and Assaf Dahan
November 6, 2023 at 3:00 AM

19 min. read

Threat brief conceptual image for CVE-2023-4966 affecting Citrix/NetScaler. A long scroll with data and text floats before an orange background.

6,944

people reacted

Threat Brief: Citrix Bleed CVE-2023-4966

By Unit 42
November 1, 2023 at 3:00 PM

5 min. read

A purple illustrated bear against a night sky with stars. Its head is inset in a red circle. The constellation ursa.

6,048

people reacted

Over the Kazuar’s Nest: Cracking Down on a Freshly Hatched Backdoor Used by Pensive Ursa (Aka Turla)

By Daniel Frank and Tom Fakterman
October 31, 2023 at 6:00 AM

20 min. read

Threat Brief: Cisco IOS XE Web UI Privilege Escalation Vulnerability (Updated)

7,058

people reacted

Threat Brief: Cisco IOS XE Web UI Privilege Escalation Vulnerability (Updated)

By Unit 42
October 18, 2023 at 5:30 PM

4 min. read

A pictorial representation of a vulnerability like CVE-2023-34362

49,678

people reacted

Threat Brief - MOVEit Transfer SQL Injection Vulnerabilities: CVE-2023-34362, CVE-2023-35036 and CVE-2023-35708 (Updated Oct 4)

By Unit 42
October 4, 2023 at 6:00 AM

10 min. read

A pictorial representation of the Cl0P ransomware gang. A hand offers money to another hand holding keys. In the background is a computer screen with the biohazard symbol on it.

5,656

people reacted

CL0P Seeds ^_- Gotta Catch Em All!

By Jeff White
September 29, 2023 at 4:00 AM

18 min. read

A pictorial representation of an adversary such as an actor linked to Gelsemium that targeted a Southeast Asian government.

5,541

people reacted

Rare Backdoors Suspected to be Tied to Gelsemium APT Found in Targeted Attack in Southeast Asian Government

By Lior Rochberger, Tom Fakterman and Robert Falcone
September 22, 2023 at 6:05 AM

8 min. read

A pictorial representation of an adversary such as a cluster linked to Stately Taurus.

6,411

people reacted

Cyberespionage Attacks Against Southeast Asian Government Linked to Stately Taurus, Aka Mustang Panda

By Lior Rochberger, Tom Fakterman and Robert Falcone
September 22, 2023 at 6:03 AM

12 min. read

A pictorial representation of an adversary such as a cluster linked to Alloy Taurus.

3,021

people reacted

Persistent Attempts at Cyberespionage Against Southeast Asian Government Target Have Links to Alloy Taurus

By Lior Rochberger, Tom Fakterman and Robert Falcone
September 22, 2023 at 6:02 AM

13 min. read

A pictorial representation of an adversary such as the three attack clusters that targeted a Southeast Asian government.

5,132

people reacted

Unit 42 Researchers Discover Multiple Espionage Operations Targeting Southeast Asian Government

By Lior Rochberger, Tom Fakterman and Robert Falcone
September 22, 2023 at 6:00 AM

6 min. read

Pictorial representation of a threat actor like Muddled Libra

30,281

people reacted

Threat Group Assessment: Muddled Libra (Updated)

By Kristopher Russo, Austin Dever and Amer Elsad
September 15, 2023 at 6:00 AM

11 min. read

A pictorial representation of an infostealer like NodeStealer. An open laptop against an orange background is flanked by exclamation points. On the laptop screen are overlapping windows with a bug icon representing the malware.

6,782

people reacted

NodeStealer 2.0 – The Python Version: Stealing Facebook Business Accounts

By Lior Rochberger
August 1, 2023 at 6:00 AM

14 min. read

A pictorial representation of the Mallox ransomware gang. A hand offers money to another hand holding keys. In the background is a computer screen with the biohazard symbol on it.

10,237

people reacted

Threat Group Assessment: Mallox Ransomware

By Lior Rochberger and Shimi Cohen
July 20, 2023 at 10:15 AM

10 min. read

Posts tagged with: Cortex XSIAM

Stately Taurus Targets the Philippines As Tensions Flare in the South Pacific

Chinese APT Targeting Cambodian Government

Agonizing Serpens (Aka Agrius) Targeting the Israeli Higher Education and Tech Sectors

Threat Brief: Citrix Bleed CVE-2023-4966

Over the Kazuar’s Nest: Cracking Down on a Freshly Hatched Backdoor Used by Pensive Ursa (Aka Turla)

Threat Brief: Cisco IOS XE Web UI Privilege Escalation Vulnerability (Updated)

Threat Brief - MOVEit Transfer SQL Injection Vulnerabilities: CVE-2023-34362, CVE-2023-35036 and CVE-2023-35708 (Updated Oct 4)

CL0P Seeds ^_- Gotta Catch Em All!

Rare Backdoors Suspected to be Tied to Gelsemium APT Found in Targeted Attack in Southeast Asian Government

Cyberespionage Attacks Against Southeast Asian Government Linked to Stately Taurus, Aka Mustang Panda

Persistent Attempts at Cyberespionage Against Southeast Asian Government Target Have Links to Alloy Taurus

Unit 42 Researchers Discover Multiple Espionage Operations Targeting Southeast Asian Government

Threat Group Assessment: Muddled Libra (Updated)

NodeStealer 2.0 – The Python Version: Stealing Facebook Business Accounts

Threat Group Assessment: Mallox Ransomware

Popular Resources

Legal Notices

Account

Trending

Popular Resources

Legal Notices

Account