Fighting Ursa Aka APT28: Illuminating a Covert Campaign Executive SummaryEarly this... 2023-12-7 22:0:35 | 阅读: 3 | 收藏 | Unit 42 - unit42.paloaltonetworks.com fighting ursa 23397 microsoft military

New Tool Set Found Used Against Middle East, Africa and the US By December 1, 2023 at 3:00 AM Category: Malware... 2023-12-1 19:0:17 | 阅读: 6 | 收藏 | Unit 42 - unit42.paloaltonetworks.com windows c2 network racoon ntospy

Exploring a Critical Risk in Google Workspace's Domain-Wide Delegation Feature Executive SummaryUnit 42 res... 2023-12-1 07:0:4 | 阅读: 5 | 收藏 | Unit 42 - unit42.paloaltonetworks.com delegation gcp cloud security behalf

Hacking Employers and Seeking Employment: Two Job-Related Campaigns Bear Hallmarks of North Korean Threat Actors This post is also available i... 2023-11-21 22:0:48 | 阅读: 5 | 收藏 | Unit 42 - unit42.paloaltonetworks.com github contagious beavertail c2

Stately Taurus Targets the Philippines As Tensions Flare in the South Pacific This post is also available i... 2023-11-17 19:0:1 | 阅读: 8 | 收藏 | Unit 42 - unit42.paloaltonetworks.com taurus stately malicious c2 philippines

In-Depth Analysis of July 2023 Exploit Chain Featuring CVE-2023-36884 and CVE-2023-36584 Executive SummaryDuring our... 2023-11-13 19:0:23 | 阅读: 68 | 收藏 | Unit 42 - unit42.paloaltonetworks.com motw windows microsoft file001 security

High Traffic + High Vulnerability = an Attractive Target for Criminals: The Dangers of Viewing Clickbait Sites This post is also available i... 2023-11-10 04:0:51 | 阅读: 11 | 收藏 | Unit 42 - unit42.paloaltonetworks.com clickbait wordpress 3169 malicious webpage

Chinese APT Targeting Cambodian Government This post is also available i... 2023-11-8 13:1:31 | 阅读: 22 | 收藏 | Unit 42 - unit42.paloaltonetworks.com malicious ammopak security cloud

Agonizing Serpens (Aka Agrius) Targeting the Israeli Higher Education and Tech Sectors Executive SummaryUnit 42 res... 2023-11-6 19:0:20 | 阅读: 24 | 收藏 | Unit 42 - unit42.paloaltonetworks.com wiper attackers cortex multilayer serpens

Threat Brief: Citrix Bleed CVE-2023-4966 Executive SummaryOn Oct. 10,... 2023-11-2 06:0:59 | 阅读: 35 | 收藏 | Unit 42 - unit42.paloaltonetworks.com netscaler citrix cortex adc 4966

Conducting Robust Learning for Empire Command and Control Detection Executive SummaryPowerShell... 2023-11-1 18:0:35 | 阅读: 5 | 收藏 | Unit 42 - unit42.paloaltonetworks.com c2 adversarial fuzzer adv monitoring

Over the Kazuar’s Nest: Cracking Down on a Freshly Hatched Backdoor Used by Pensive Ursa (Aka Turla) Executive SummaryWhile track... 2023-10-31 21:0:42 | 阅读: 9 | 收藏 | Unit 42 - unit42.paloaltonetworks.com kazuar c2 analysis machine cortex

CloudKeys in the Air: Tracking Malicious Operations of Exposed IAM Keys Executive SummaryUnit 42 res... 2023-10-30 19:40:44 | 阅读: 16 | 收藏 | Unit 42 - unit42.paloaltonetworks.com cloud github ec2 security repository

When PAM Goes Rogue: Malware Uses Authentication Modules for Mischief This post is also available i... 2023-10-26 21:0:18 | 阅读: 15 | 收藏 | Unit 42 - unit42.paloaltonetworks.com pam malicious azazel wildfire

Threat Brief: Cisco IOS XE Web UI Privilege Escalation Vulnerability This post is also available i... 2023-10-19 08:30:30 | 阅读: 18 | 收藏 | Unit 42 - unit42.paloaltonetworks.com alto palo xe cloud protections

BlackCat Climbs the Summit With a New Tactic This post is also available i... 2023-10-18 21:0:0 | 阅读: 15 | 收藏 | Unit 42 - unit42.paloaltonetworks.com blackcat ransomware munchkin payload python

Blocking Dedicated Attacking Hosts Is Not Enough: In-Depth Analysis of a Worldwide Linux XorDDoS Campaign Executive SummaryWe recently... 2023-10-16 21:0:30 | 阅读: 9 | 收藏 | Unit 42 - unit42.paloaltonetworks.com c2 xorddos xxxatat456 gggatat456 network

Understanding DNS Tunneling Traffic in the Wild Executive SummaryWe present... 2023-10-14 07:0:10 | 阅读: 13 | 收藏 | Unit 42 - unit42.paloaltonetworks.com tunneling nameserver alto palo c2

Wireshark Tutorial: Identifying Hosts and Users This post is also available i... 2023-10-11 00:45:50 | 阅读: 8 | 收藏 | Unit 42 - unit42.paloaltonetworks.com windows dhcp unencrypted nbns microsoft

Leveraging a Hooking Framework to Expand Malware Detection Coverage on the Android Platform Executive SummaryOne of the... 2023-10-6 21:0:30 | 阅读: 4 | 收藏 | Unit 42 - unit42.paloaltonetworks.com apk analysis hooking database sqlcipher