Threats

CVE-2024-27198 and CVE-2024-27199 Detection: Critical Vulnerabilities in JetBrains TeamCity Pose Escalating Risks with Exploits Underway

A couple of months after the massive exploitation of CVE-2023-42793, novel critical vulnerabilities in JetBrains TeamCity came into the spotlight,…

rooter March 6, 2024

Threats

Phobos Ransomware Activity Detection: Adversaries Target the Public Sector, Healthcare, and Other Critical U.S. Infrastructure

The exponential rise and escalation in intrusion complexity of ransomware attacks fuel the need for proactive ransomware detection. FBI and…

rooter March 1, 2024

Threats

CVE-2024-23204 Detection: Exploitation of a Recently Patched Vulnerability in Apple Shortcuts App Can Lead to User Data Theft

Apple has patched a notorious security gap affecting its Shortcuts app. The high-severity flaw enables adversaries to collect sensitive info…

rooter February 27, 2024

Threats

UAC-0149 Attack Detection: Hackers Launch a Targeted Attack Against the Armed Forces of Ukraine, as CERT-UA Reports

Two days before the 2nd anniversary of russia’s full-scale invasion, CERT-UA researchers uncovered an ongoing phishing attack against the Armed…

rooter February 26, 2024

Threats

Earth Preta APT Attack Detection: China-Linked APT Hits Asia with DOPLUGS Malware, a New PlugX Variant

The nefarious China-backed Earth Preta APT also known as Mustang Panda has been targeting Asian countries in the long-lasting adversary…

rooter February 22, 2024

Threats

Interview with Threat Bounty Developer – PHYO PAING HTUN

Today, we want to introduce to the SOC Prime’s community a talented and devoted member of the Threat Bounty Program…

rooter February 22, 2024

Threats

Knight Ransomware Detection: 3.0 Ransomware Source Code Available for Sale

The source code for Knight ransomware, a rebrand of Cyclops RaaS operation, is available for sale on a hacking forum.…

rooter February 21, 2024

Threats

CVE-2023-50358 Detection: A New Zero-Day Vulnerability in QNAP QTS and QuTS Hero Firmware

Close on the heels of a critical Jenkins RCE vulnerability, another security flaw that can pose a severe threat to…

rooter February 19, 2024

Threats

SOC Prime Threat Bounty Digest — January 2024 Results

Threat Bounty Content In January, the members of the Threat Bounty Program were very active in submitting detections for review…

rooter February 19, 2024

Threats

Nation-Backed APT Attack Detection: Microsoft and OpenAI Warn of AI Exploitation by Iranian, North Korean, Chinese, and russian Hackers

Throughout 2023, the frequency and sophistication of attacks have increased along with the swift evolution and adoption of AI technology.…

rooter February 15, 2024

Threats

CVE-2024-27198 and CVE-2024-27199 Detection: Critical Vulnerabilities in JetBrains TeamCity Pose Escalating Risks with Exploits Underway

Phobos Ransomware Activity Detection: Adversaries Target the Public Sector, Healthcare, and Other Critical U.S. Infrastructure

CVE-2024-23204 Detection: Exploitation of a Recently Patched Vulnerability in Apple Shortcuts App Can Lead to User Data Theft

UAC-0149 Attack Detection: Hackers Launch a Targeted Attack Against the Armed Forces of Ukraine, as CERT-UA Reports

Earth Preta APT Attack Detection: China-Linked APT Hits Asia with DOPLUGS Malware, a New PlugX Variant

Interview with Threat Bounty Developer – PHYO PAING HTUN

Knight Ransomware Detection: 3.0 Ransomware Source Code Available for Sale

CVE-2023-50358 Detection: A New Zero-Day Vulnerability in QNAP QTS and QuTS Hero Firmware

SOC Prime Threat Bounty Digest — January 2024 Results

Nation-Backed APT Attack Detection: Microsoft and OpenAI Warn of AI Exploitation by Iranian, North Korean, Chinese, and russian Hackers

You Missed

NGate Campaign Targets Brazil, Trojanizes HandyPay to Steal NFC Data and PINs

Google Patches Antigravity IDE Flaw Enabling Prompt Injection Code Execution

According to Ryan Reynolds, Deadpool Is Strictly a Supporting Character Now

Chinese APT Targets Indian Banks, Korean Policy Circles

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

Threats

You Missed

Oh hi there 👋It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

Oh hi there 👋
It’s nice to meet you.