How StrikeReady helped a SOC prioritize alerts triggered by a previously untagged APT actor.

Its mid-December, if you’re on-call or working to defend networks, this newsletter is for you. Martin discusses the widening gap between threat and defences as well as the growing problem of home...

The Russia-linked state-sponsored threat actor tracked as Gamaredon has been attributed to two new Android spyware tools called BoneSpy and PlainGnome, marking the first time the adversary has...

2024-11-28 • StrikeReady • StrikeReady Labs • win.edam, win.emmenhtal Open article on Malpedia

2024-11-28 • Hunt.io • Hunt.io • win.xworm Open article on Malpedia

2024-11-30 • Technical Evolution • techevo • elf.rekoobe Open article on Malpedia

2024-12-02 • Zscaler • Muhammed Irfan V A • win.revc2, win.venomloader Open article on Malpedia

2024-12-02 • Medium b.magnezi • 0xMrMagnezi • win.lokipws Open article on Malpedia

2024-12-02 • FortiGuard Labs • Pei Han Liao • win.smokeloader Open article on Malpedia

2024-12-03 • BitSight • Bitsight TRACE • win.socks5_systemz Open article on Malpedia

2024-12-03 • Check Point Research • Check Point Research • elf.akira Open article on Malpedia

2024-12-03 • Hunt.io • Hunt.io • win.cobalt_strike Open article on Malpedia

2024-12-04 • Cleafy • Alessandro Strino, Federico Valentini, Simone Mattia • apk.droidbot Open article on Malpedia

2024-12-04 • Microsoft • Microsoft Threat Intelligence • win.crimson, win.minipocket, win.twodash, win.wainscot Open article on Malpedia

2024-12-04 • Lumen • Black Lotus Labs, Danny Adamitis, Ryan English • win.crimson, win.twodash Open article on Malpedia

2024-12-04 • Rapid7 • Tyler McGraw • win.zloader Open article on Malpedia

2024-12-05 • Orange Cyberdefense • Alexandre Matousek, Marine PICHON • win.edam, win.emmenhtal Open article on Malpedia

2024-12-05 • LinkedIn (Idan Tarab) • Idan Tarab Open article on Malpedia

2024-12-06 • Github (VenzoV) • VenzoV • win.xworm Open article on Malpedia

2024-12-08 • DataBreaches.net • Dissent Open article on Malpedia

2024-12-10 • Hunt.io • Hunt.io • win.kimsuky Open article on Malpedia

2024-12-10 • Zscaler • ThreatLabZ research team • win.zloader Open article on Malpedia

2024-12-11 • Microsoft • Microsoft Threat Intelligence • win.amadey, win.kazuar, win.wipbot Open article on Malpedia

SAG-AFTRA Health Plan said investigators traced the breach back to a phishing email that compromised the account. Law enforcement has been notified and the investigation is ongoing.

Details have emerged about a now-patched security vulnerability in Apple's iOS and macOS that, if successfully exploited, could sidestep the Transparency, Consent, and Control (TCC) framework and...

Just in time for the holidays!

A new Linux rootkit malware called Pumakit has been discovered that uses stealth and advanced privilege escalation techniques to hide its presence on systems. [...]

Two Woffice theme vulnerabilities have been identified that allow attackers to gain unauthorized access and control of unpatched websites

International law enforcement operation seizes the Rydox cybercrime marketplace and arrests three administrators. [...]

SaaS services are one of the biggest drivers of OpEx (operating expenses) for modern businesses. With Gartner projecting $247.2 billion in global SaaS spending this year, it’s no wonder SaaS...