Vulnerabilities in LangChain Gen AI This post is also available in: 日本語 (Japanese)Executive SummaryResearchers fr... 2024-7-23 18:0:19 | 阅读: 26 | 收藏 | Unit 42 - unit42.paloaltonetworks.com langchain sitemap security python

From RA Group to RA World: Evolution of a Ransomware Group This post is also available in: 日本語 (Japanese)Executive SummaryThe ransomware... 2024-7-22 18:0:51 | 阅读: 16 | 收藏 | Unit 42 - unit42.paloaltonetworks.com ra ransomware cortex windows starlight

Container Breakouts: Escape Techniques in Cloud Environments This post is also available in: 日本語 (Japanese)Executive SummaryThis article r... 2024-7-18 18:0:41 | 阅读: 11 | 收藏 | Unit 42 - unit42.paloaltonetworks.com containers attacker kubernetes cortex privileges

Beware of BadPack: One Weird Trick Being Used Against Android Devices Executive SummaryThis article discusses recent samples of BadPack Android malware... 2024-7-16 18:0:48 | 阅读: 5 | 收藏 | Unit 42 - unit42.paloaltonetworks.com apk badpack analysis

DarkGate: Dancing the Samba With Alluring Excel Files Executive SummaryThis article reviews a DarkGate malware campaign from March-April... 2024-7-11 03:0:54 | 阅读: 12 | 收藏 | Unit 42 - unit42.paloaltonetworks.com darkgate xlsx analysis c2 powershell

Dissecting GootLoader With Node.js Executive SummaryThis article shows how to circumvent anti-analysis techniques fro... 2024-7-4 06:0:26 | 阅读: 26 | 收藏 | Unit 42 - unit42.paloaltonetworks.com gootloader malicious oftenfs course83 windows

Threat Brief: CVE-2024-6387 OpenSSH RegreSSHion Vulnerability Executive SummaryOn July 1, 2024, a critical signal handler race condition vulnera... 2024-7-3 02:28:47 | 阅读: 24 | 收藏 | Unit 42 - unit42.paloaltonetworks.com openssh 6387 cloud prisma cortex

The Contrastive Credibility Propagation Algorithm in Action: Improving ML-powered Data Loss Prevention Executive SummaryThe Contrastive Credibility Propagation (CCP) algorithm is a nove... 2024-6-28 18:0:57 | 阅读: 7 | 收藏 | Unit 42 - unit42.paloaltonetworks.com pseudo ccp unlabeled classifier dlp

Threat Actor Groups Tracked by Palo Alto Networks Unit 42 Executive SummaryThis article lists the threat actors tracked by Palo Alto Network... 2024-6-28 09:0:15 | 阅读: 7 | 收藏 | Unit 42 - unit42.paloaltonetworks.com scorpius sectors ransomware taurus retail

Attackers Exploiting Public Cobalt Strike Profiles Executive SummaryIn this article, Unit 42 researchers detail recent findings of ma... 2024-6-26 18:0:12 | 阅读: 14 | 收藏 | Unit 42 - unit42.paloaltonetworks.com c2 cobalt beacon attackers ocsp

Attack Paths Into VMs in the Cloud Executive SummaryThis post r... 2024-6-18 18:0:23 | 阅读: 15 | 收藏 | Unit 42 - unit42.paloaltonetworks.com cloud compute vms ssh ec2

Operation Diplomatic Specter: An Active Chinese Cyberespionage Campaign Leverages Rare Tool Set to Target Governmental Entities in the Middle East, Africa and Asia This post is also available i... 2024-5-23 18:0:36 | 阅读: 16 | 收藏 | Unit 42 - unit42.paloaltonetworks.com specter diplomatic 0043 sta

Payload Trends in Malicious OneNote Samples This post is also available i... 2024-5-16 18:0:2 | 阅读: 7 | 收藏 | Unit 42 - unit42.paloaltonetworks.com onenote malicious payload attackers microsoft

Leveraging DNS Tunneling for Tracking and Scanning This post is also available i... 2024-5-13 18:0:29 | 阅读: 17 | 收藏 | Unit 42 - unit42.paloaltonetworks.com tunneling attackers secshow trkcdn simitor

Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400 Executive SummaryPalo Alto N... 2024-4-13 01:0:40 | 阅读: 71 | 收藏 | Unit 42 - unit42.paloaltonetworks.com palo alto pan 3400 python

Muddled Libra’s Evolution to the Cloud Executive SummaryUnit 42 res... 2024-4-10 02:0:8 | 阅读: 11 | 收藏 | Unit 42 - unit42.paloaltonetworks.com muddled libra cloud attackers microsoft

It Was Not Me! Malware-Initiated Vulnerability Scanning Is on the Rise Executive SummaryOur telemet... 2024-4-9 06:0:58 | 阅读: 10 | 收藏 | Unit 42 - unit42.paloaltonetworks.com attacker ivanti attackers telemetry

Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094) Executive SummaryOn March 28... 2024-3-31 10:15:55 | 阅读: 19 | 收藏 | Unit 42 - unit42.paloaltonetworks.com xz 3094 library cortex cloud

Exposing a New BOLA Vulnerability in Grafana This post is also available i... 2024-3-27 22:0:34 | 阅读: 34 | 收藏 | Unit 42 - unit42.paloaltonetworks.com snapshots deletekey bola security attackers

ASEAN Entities in the Spotlight: Chinese APT Group Targeting Executive SummaryOver the pa... 2024-3-27 04:0:22 | 阅读: 51 | 收藏 | Unit 42 - unit42.paloaltonetworks.com malicious asean stately taurus affiliated