Cactus Ransomware Detection: Attackers Launch Targeted Attacks to Spread Ransomware Strains
Heads up! Recent Cactus ransomware attacks are getting into the spotlight. Hackers exploit critical Qlik Sense vulnerabilities to further deliver…
Threats
UAC-0006 Attack Detection: Overview of the Financially Motivated Group’s Campaigns Based on CERT-UA Research
The infamous hacking group known as UAC-0006 has been launching offensive operations against Ukraine since 2013 primarily driven by financial…
UAC-0050 Attack Detection: Hackers Launch Another Targeted Campaign Spreading Remcos RAT
Hard on the heels of the phishing attack impersonating the Security Service of Ukraine and using Remcos RAT, the hacking…
CVE-2023-49103 Detection: A Critical Vulnerability in OwnCloud’s Graph API App Leveraged for in-the-Wild Attacks
Hot on the heels of the Zimbra zero-day vulnerability, another critical security flaw affecting popular software comes to the scene.…
Konni Group Attack Detection: North Korean Hackers Leverage russian-Language Weaponized Word Document to Spread RAT Malware
Defenders observe a new phishing attack, in which adversaries weaponize a russian-language Microsoft Word document to distribute malware that can…
Accelerate Your MDR Excellence with SOC Prime
Managed Detection and Response (MDR) providers operate in a realm where maintaining the integrity of client security is paramount despite…
LockBit 3.0 Ransomware Attack Detection: CISA, FBI, and International Cyber Authorities Warn Defenders of CVE 2023-4966 Citrix Bleed Vulnerability Exploitation
A critical vulnerability impacting Citrix NetScaler ADC and Gateway products tracked as CVE-2023-4966 is actively exploited in real-world attacks despite…
CVE-2023-37580 Detection: Four Hacking Groups Exploit a Zimbra Zero-Day Vulnerability Targeting State Bodies
Vulnerabilities affecting popular software products, like Zimbra Collaboration Suite (ZCS), continuously expose organizations in multiple industry vectors, including the public…
SOC Prime Threat Bounty Digest — October 2023 Results
Discover what’s new in SOC Prime’s Threat Bounty program and the October results. Threat Bounty Content Submissions We are happy…
Remcos RAT Detection: UAC-0050 Hackers Launch Phishing Attacks Impersonating the Security Service of Ukraine
CERT-UA researchers have recently published a novel heads-up that covers ongoing phishing attacks against Ukraine involving distribution of Remcos RAT.…