Back to Blog

Tag: Sigma

UAC-0173 Attacks: Ukrainian Judicial Bodies and Notary Massively Targeted With AsyncRAT Malware 3 min read CVEs UAC-0173 Attacks: Ukrainian Judicial Bodies and Notary Massively Targeted With AsyncRAT Malware by Daryna Olyniychuk SOC Prime on Discord: Join a Single Community for All Cyber Defenders to Benefit from Shared Expertise 3 min read SOC Prime Platform SOC Prime on Discord: Join a Single Community for All Cyber Defenders to Benefit from Shared Expertise by Veronika Zahorulko CVE-2023-3519 Detection: RCE Zero-Day in Citrix NetScaler ADC and NetScaler Gateway Exploited in the Wild 3 min read CVEs CVE-2023-3519 Detection: RCE Zero-Day in Citrix NetScaler ADC and NetScaler Gateway Exploited in the Wild by Daryna Olyniychuk Adversaries Use Weaponized PDFs Disguised as German Embassy Lures to Spread Duke Malware Variant in Attacks Against Ministries of Foreign Affairs of NATO-Aligned Countries  3 min read CVEs Adversaries Use Weaponized PDFs Disguised as German Embassy Lures to Spread Duke Malware Variant in Attacks Against Ministries of Foreign Affairs of NATO-Aligned Countries  by Veronika Zahorulko Okta & Splunk Integration Guide 6 min read SIEM & EDR Okta & Splunk Integration Guide by Oleksandra Rumiantseva New MerlinAgent Open-Source Tool Used by UAC-0154 Group to Target Ukrainian State Agencies 3 min read CVEs New MerlinAgent Open-Source Tool Used by UAC-0154 Group to Target Ukrainian State Agencies by Veronika Zahorulko Google AMP Exploited in Phishing Attacks Targeting Enterprise Users 2 min read CVEs Google AMP Exploited in Phishing Attacks Targeting Enterprise Users by Veronika Zahorulko Detect CVE-2023-35078 Exploitation: Critical Authentication Bypass Zero-Day in Ivanti Endpoint Manager Mobile (EPMM) 3 min read CVEs Detect CVE-2023-35078 Exploitation: Critical Authentication Bypass Zero-Day in Ivanti Endpoint Manager Mobile (EPMM) by Daryna Olyniychuk Detecting SmokeLoader Campaign: UAC-0006 Keep Targeting Ukrainian Financial Institutions in a Series of Phishing Attacks 2 min read CVEs Detecting SmokeLoader Campaign: UAC-0006 Keep Targeting Ukrainian Financial Institutions in a Series of Phishing Attacks by Daryna Olyniychuk Mallox Ransomware Detection: Increasing Attacks Abusing MS-SQL Servers 2 min read CVEs Mallox Ransomware Detection: Increasing Attacks Abusing MS-SQL Servers by Veronika Zahorulko