Category: Threats

Forest Blizzard aka Fancy Bear Attack Detection: russian-backed Hackers Apply a Custom GooseEgg Tool to Exploit CVE-2022-38028 in Attacks Against Ukraine, Western Europe, and North America

• rooter
• April 24, 2024
• 5 min read
• 0

AI SIEM Migration: Simplify, Optimize, Innovate

• rooter
• April 24, 2024
• 5 min read
• 0

UAC-0133 (Sandworm) Attack Detection: russia-Linked Hackers Aim to Cripple the Information and Communication Systems of 20 Critical Infrastructure Organizations Across Ukraine

• rooter
• April 23, 2024
• 6 min read
• 0

UAC-0149 Attacks Ukrainian Defense Forces Using Signal, CVE-2023-38831 Exploits, and COOKBOX Malware

• rooter
• April 22, 2024
• 1 min read
• 0

Akira Ransomware Detection: Joint Cybersecurity Advisory (CSA) AA24-109A Highlights Attacks Targeting Businesses and Critical Infrastructure in North America, Europe, and Australia

• rooter
• April 19, 2024
• 4 min read
• 0

UAC-0184 Abuses Messengers and Dating Websites to Proceed with Attacks Against Ukrainian Government and Military

• rooter
• April 18, 2024
• 4 min read
• 0

CVE-2024-3400 Detection: A Maximum Severity Command Injection PAN-OS Zero-Day Vulnerability in GlobalProtect Software

• rooter
• April 17, 2024
• 4 min read
• 0

CVE-2024-24576 Detection: Hackers Exploit a  Maxim Severity “BatBadBut” Rust Vulnerability to Target Windows Users

• rooter
• April 15, 2024
• 4 min read
• 0

SOC Prime Threat Bounty Digest — March 2024 Results

• rooter
• April 12, 2024
• 4 min read
• 0

russian state-sponsored Hive0051 (aka UAC-0010, Gamaredon) Attack Detection: Adversaries Apply an Aggressive Infection Approach Leveraging Three Malware Branches

• rooter
• April 11, 2024
• 5 min read
• 0