OilRig Targets Middle Eastern Telecommunications Organization and Adds Novel C2 Channel with Steganography to Its Inventory 65,955 people reacted OilRig Targets Middle Eastern Telecommunications Organization and Adds Novel C2 Channel with Steganography to Its Inventory By Robert Falcone July 22, 2020 at 6:00 AM 29 18 min. read
Threat Brief: Iranian-Linked Cyber Operations 43,004 people reacted Threat Brief: Iranian-Linked Cyber Operations By Unit 42 January 9, 2020 at 6:00 PM 44 6 min. read
Behind the Scenes with OilRig 80,704 people reacted Behind the Scenes with OilRig By Bryan Lee and Robert Falcone April 30, 2019 at 6:00 AM 4 24 min. read
DNS Tunneling in the Wild: Overview of OilRig’s DNS Tunneling By Robert Falcone April 16, 2019 at 9:00 AM 10 37 min. read
42,608 people reacted Analyzing OilRig's Ops Tempo from Testing to Weaponization to Delivery By Robert Falcone and Kyle Wilhoit November 16, 2018 at 8:00 AM 6 15 min. read
65,479 people reacted OilRig Uses Updated BONDUPDATER to Target Middle Eastern Government By Kyle Wilhoit and Robert Falcone September 12, 2018 at 4:00 PM 8 9 min. read
58,881 people reacted OilRig targets a Middle Eastern Government and Adds Evasion Techniques to OopsIE By Robert Falcone, Bryan Lee and Riley Porter September 4, 2018 at 1:00 PM 7 9 min. read
OilRig Targets Technology Service Provider and Government Agency with QUADAGENT By Bryan Lee and Robert Falcone July 25, 2018 at 5:00 AM 1 14 min. read
66,223 people reacted OopsIE! OilRig Uses ThreeDollars to Deliver New Trojan By Bryan Lee and Robert Falcone February 23, 2018 at 5:00 AM 9 11 min. read
78,067 people reacted OilRig uses RGDoor IIS Backdoor on Targets in the Middle East By Robert Falcone January 25, 2018 at 5:00 AM 2 8 min. read
67,233 people reacted Introducing the Adversary Playbook: First up, OilRig By Ryan Olson December 15, 2017 at 1:00 PM 11 6 min. read
46,869 people reacted OilRig Performs Tests on the TwoFace Webshell By Robert Falcone December 11, 2017 at 1:00 PM 1 16 min. read
53,769 people reacted OilRig Deploys “ALMA Communicator” – DNS Tunneling Trojan By Robert Falcone November 8, 2017 at 1:00 PM 5 7 min. read
57,572 people reacted OilRig Group Steps Up Attacks with New Delivery Documents and New Injector Trojan By Robert Falcone and Bryan Lee October 9, 2017 at 10:00 AM 10 12 min. read
45,980 people reacted Striking Oil: A Closer Look at Adversary Infrastructure By Robert Falcone and Bryan Lee September 26, 2017 at 1:00 PM 3 8 min. read