Back to Blog

Tag: Detection Content

Shrouded#Sleep Campaign Detection: North Korean Hackers Linked to the APT37 Group Use New VeilShell Malware Targeting Southeast Asia 4 min read CVEs Shrouded#Sleep Campaign Detection: North Korean Hackers Linked to the APT37 Group Use New VeilShell Malware Targeting Southeast Asia by Veronika Zahorulko SOC Prime Threat Bounty Digest — September 2024 Results 3 min read SOC Prime Platform SOC Prime Threat Bounty Digest — September 2024 Results by Alla Yurchenko Uncoder AI: A Guide on Contributing Detection Rules to SOC Prime Platform via Threat Bounty Program 4 min read SOC Prime Platform Uncoder AI: A Guide on Contributing Detection Rules to SOC Prime Platform via Threat Bounty Program by Hanna Korostelova Uncoder for Flexible Threat Detection: From Cloud to Air-Gapped Networks 5 min read SOC Prime Platform Uncoder for Flexible Threat Detection: From Cloud to Air-Gapped Networks by Eugene Tkachenko Gamaredon Attack Detection: Cyber-Espionage Operations Against Ukraine by the russia-linked APT  4 min read CVEs Gamaredon Attack Detection: Cyber-Espionage Operations Against Ukraine by the russia-linked APT  by Veronika Zahorulko SnipBot Detection: A New RomCom Malware Variant Leverages a Custom Code Obfuscation Method and Sophisticated Evasion Techniques 3 min read CVEs SnipBot Detection: A New RomCom Malware Variant Leverages a Custom Code Obfuscation Method and Sophisticated Evasion Techniques by Daryna Olyniychuk Vendor-Agnostic Cybersecurity: Adapting to the Future of Threat Detection 5 min read SIEM & EDR Vendor-Agnostic Cybersecurity: Adapting to the Future of Threat Detection by Eugene Tkachenko Earth Baxia Attack Detection: China-Backed Hackers Use Spear-Phishing, Exploit the GeoServer Vulnerability (CVE-2024-36401), and Apply a New EAGLEDOOR Malware to Target APAC 4 min read CVEs Earth Baxia Attack Detection: China-Backed Hackers Use Spear-Phishing, Exploit the GeoServer Vulnerability (CVE-2024-36401), and Apply a New EAGLEDOOR Malware to Target APAC by Veronika Zahorulko CVE-2024-6670 and CVE-2024-6671 Detection: RCE Attacks Exploiting Critical SQL Injection Vulnerabilities in WhatsUp Gold  3 min read CVEs CVE-2024-6670 and CVE-2024-6671 Detection: RCE Attacks Exploiting Critical SQL Injection Vulnerabilities in WhatsUp Gold  by Veronika Zahorulko Celebrating Detection Engineering Excellence 4 min read SOC Prime Platform Celebrating Detection Engineering Excellence by Alla Yurchenko