New MerlinAgent Open-Source Tool Used by UAC-0154 Group to Target Ukrainian State Agencies
Cyber defenders observe growing volumes of cyber attacks against Ukraine and its allies launched by the russian offensive forces, with…
Threats
Google AMP Exploited in Phishing Attacks Targeting Enterprise Users
Phishing remains one of the most prevalent attacker techniques as a response to a continuous surge in phishing campaigns across…
Detect CVE-2023-35078 Exploitation: Critical Authentication Bypass Zero-Day in Ivanti Endpoint Manager Mobile (EPMM)
Cybersecurity heads up! After a series of security holes in Pulse Connect Secure SSL VPN appliance affected multiple organizations back…
Detecting SmokeLoader Campaign: UAC-0006 Keep Targeting Ukrainian Financial Institutions in a Series of Phishing Attacks
UAC-0006 hacking collective is on the rise, actively targeting Ukrainian organizations with SmokeLoader malware in a long-lasting campaign aimed at…
Mallox Ransomware Detection: Increasing Attacks Abusing MS-SQL Servers
Cyber defenders have observed a recent surge in cyber attacks spreading Mallox ransomware. For a period of two years, ransomware…
CAPIBAR and KAZUAR Malware Detection: Turla aka UAC-0024 or UAC-0003 Launches Targeted Cyber-Espionage Campaigns Against Ukraine
Since at least 2022, the hacking collective tracked as UAC-0024 has been launching a series of offensive operations targeting Ukraine’s…
What Are LOLBins?
LOLBins, also known as “Living off the Land Binaries,” are binaries that use legitimate commands and pre-installed executables of the…
UAC-0010 aka Armageddon APT Attacks Detection: Overview of Group’s Ongoing Offensive Operations Targeting Ukraine
Since russia’s full-fledged invasion of Ukraine, the aggressor’s offensive forces have launched thousands of targeted cyber attacks against Ukraine. One…
What Is Detection Engineering?
Threat detection engineering (DE) is more complex than it might seem initially. It goes far beyond the detection of events…
SmokeLoader Detection: UAC-0006 Group Launches a New Phishing Campaign Against Ukraine
Heads up! Cyber defenders are notified of a new wave of phishing attacks leveraging the invoice-relate email subjects with the…