Medusa Ransomware Turning Your Files into Stone Executive SummaryUnit 42 Thr... 2024-1-11 22:0:0 | 阅读: 12 | 收藏 | Unit 42 - unit42.paloaltonetworks.com medusa ransomware taskkill sqlagent windows

Tackling Anti-Analysis Techniques of GuLoader and RedLine Stealer Executive SummaryMalware, li... 2024-1-5 19:0:53 | 阅读: 12 | 收藏 | Unit 42 - unit42.paloaltonetworks.com guloader ciphertext analysis stealer redline

From DarkGate to AsyncRAT: Malware Detected and Shared As Unit 42 Timely Threat Intelligence This post is also available i... 2023-12-29 22:0:38 | 阅读: 22 | 收藏 | Unit 42 - unit42.paloaltonetworks.com pikabot darkgate timely icedid ta577

Dual Privilege Escalation Chain: Exploiting Monitoring and Service Mesh Configurations and Privileges in GKE to Gain Unauthorized Access in Kubernetes This post is also available i... 2023-12-27 22:0:57 | 阅读: 13 | 收藏 | Unit 42 - unit42.paloaltonetworks.com kubernetes pods attacker fluentbit security

Why Is an Australian Footballer Collecting My Passwords? The Various Ways Malicious JavaScript Can Steal Your Secrets This post is also available i... 2023-12-20 19:0:7 | 阅读: 13 | 收藏 | Unit 42 - unit42.paloaltonetworks.com analysis attackers evade payload malicious

Toward Ending the Domain Wars: Early Detection of Malicious Stockpiled Domains Executive SummaryMalicious a... 2023-12-16 07:0:28 | 阅读: 15 | 收藏 | Unit 42 - unit42.paloaltonetworks.com malicious stockpiled pdns phishing usps

Fighting Ursa Aka APT28: Illuminating a Covert Campaign Executive SummaryEarly this... 2023-12-7 22:0:35 | 阅读: 13 | 收藏 | Unit 42 - unit42.paloaltonetworks.com fighting ursa 23397 microsoft military

New Tool Set Found Used Against Middle East, Africa and the US By December 1, 2023 at 3:00 AM Category: Malware... 2023-12-1 19:0:17 | 阅读: 16 | 收藏 | Unit 42 - unit42.paloaltonetworks.com windows c2 network racoon ntospy

Exploring a Critical Risk in Google Workspace's Domain-Wide Delegation Feature Executive SummaryUnit 42 res... 2023-12-1 07:0:4 | 阅读: 16 | 收藏 | Unit 42 - unit42.paloaltonetworks.com delegation gcp cloud security behalf

Hacking Employers and Seeking Employment: Two Job-Related Campaigns Bear Hallmarks of North Korean Threat Actors This post is also available i... 2023-11-21 22:0:48 | 阅读: 18 | 收藏 | Unit 42 - unit42.paloaltonetworks.com github contagious beavertail c2

Stately Taurus Targets the Philippines As Tensions Flare in the South Pacific This post is also available i... 2023-11-17 19:0:1 | 阅读: 15 | 收藏 | Unit 42 - unit42.paloaltonetworks.com taurus stately malicious c2 philippines

In-Depth Analysis of July 2023 Exploit Chain Featuring CVE-2023-36884 and CVE-2023-36584 read file error: read notes: is a directory... 2023-11-13 19:0:23 | 阅读: 90 | 收藏 | Unit 42 - unit42.paloaltonetworks.com motw windows microsoft file001 security

High Traffic + High Vulnerability = an Attractive Target for Criminals: The Dangers of Viewing Clickbait Sites This post is also available i... 2023-11-10 04:0:51 | 阅读: 22 | 收藏 | Unit 42 - unit42.paloaltonetworks.com clickbait wordpress 3169 malicious webpage

Chinese APT Targeting Cambodian Government This post is also available i... 2023-11-8 13:1:31 | 阅读: 32 | 收藏 | Unit 42 - unit42.paloaltonetworks.com malicious ammopak security cloud

Agonizing Serpens (Aka Agrius) Targeting the Israeli Higher Education and Tech Sectors Executive SummaryUnit 42 res... 2023-11-6 19:0:20 | 阅读: 35 | 收藏 | Unit 42 - unit42.paloaltonetworks.com wiper attackers cortex multilayer serpens

Threat Brief: Citrix Bleed CVE-2023-4966 Executive SummaryOn Oct. 10,... 2023-11-2 06:0:59 | 阅读: 43 | 收藏 | Unit 42 - unit42.paloaltonetworks.com netscaler citrix cortex adc 4966

Conducting Robust Learning for Empire Command and Control Detection Executive SummaryPowerShell... 2023-11-1 18:0:35 | 阅读: 12 | 收藏 | Unit 42 - unit42.paloaltonetworks.com c2 adversarial fuzzer adv monitoring

Over the Kazuar’s Nest: Cracking Down on a Freshly Hatched Backdoor Used by Pensive Ursa (Aka Turla) Executive SummaryWhile track... 2023-10-31 21:0:42 | 阅读: 18 | 收藏 | Unit 42 - unit42.paloaltonetworks.com kazuar c2 analysis machine cortex

CloudKeys in the Air: Tracking Malicious Operations of Exposed IAM Keys Executive SummaryUnit 42 res... 2023-10-30 19:40:44 | 阅读: 25 | 收藏 | Unit 42 - unit42.paloaltonetworks.com cloud github ec2 security repository

When PAM Goes Rogue: Malware Uses Authentication Modules for Mischief This post is also available i... 2023-10-26 21:0:18 | 阅读: 20 | 收藏 | Unit 42 - unit42.paloaltonetworks.com pam malicious azazel wildfire