Category: Threats

Linux Backdoor Gomir Detection: North Korean Kimsuky APT aka Springtail Spreads New Malware Variant Targeting South Korean Organizations

• rooter
• May 20, 2024
• 4 min read
• 0

FIN7 Attack Detection: russia-linked Financially-Motivated Group Exploits Google Ads to Drop NetSupport RAT via MSIX App Installer Files

• rooter
• May 15, 2024
• 4 min read
• 0

SOC Prime Threat Bounty Digest — April 2024 Results

• rooter
• May 13, 2024
• 3 min read
• 0

Black Basta Activity Detection: FBI, CISA & Partners Warn of Increasing Ransomware Attacks Targeting Critical Infrastructure Sectors, Including Healthcare

• rooter
• May 13, 2024
• 4 min read
• 0

CVE-2024-21793 and CVE-2024-26026 Detection: Exploitation of Critical F5 Central Manager Vulnerabilities Can Lead to Full System Compromise

• rooter
• May 9, 2024
• 3 min read
• 0

Cuckoo Malware Detection: New macOS Spyware & Infostealer Targeting Intel and ARM-Based Macs 

• rooter
• May 7, 2024
• 3 min read
• 0

SOC Prime’s Integration Highlights with Amazon Security Lake

• rooter
• May 2, 2024
• 4 min read
• 0

CVE-2024-4040 Detection: A Critical CrushFTP Zero-Day Vulnerability Exploited in the Wild Targeting U.S. Organizations

• rooter
• April 30, 2024
• 4 min read
• 0

CVE-2024-21111 Detection: A New Critical Local Privilege Escalation Vulnerability in Oracle VirtualBox with the PoC Exploit Released

• rooter
• April 26, 2024
• 3 min read
• 0

Forest Blizzard aka Fancy Bear Attack Detection: russian-backed Hackers Apply a Custom GooseEgg Tool to Exploit CVE-2022-38028 in Attacks Against Ukraine, Western Europe, and North America

• rooter
• April 24, 2024
• 5 min read
• 0