Back to Blog

Tag: Sigma

Earth Simnavaz (aka APT34) Attack Detection: Iranian Hackers Leverage Windows Kernel Vulnerability to Target UAE and Gulf Region 3 min read CVEs Earth Simnavaz (aka APT34) Attack Detection: Iranian Hackers Leverage Windows Kernel Vulnerability to Target UAE and Gulf Region by Veronika Zahorulko LemonDuck Malware Detection: Exploits CVE-2017-0144 and Other Microsoft’s Server Message BlockSMB Vulnerabilities for Cryptocurrency Mining 4 min read CVEs LemonDuck Malware Detection: Exploits CVE-2017-0144 and Other Microsoft’s Server Message BlockSMB Vulnerabilities for Cryptocurrency Mining by Daryna Olyniychuk Shrouded#Sleep Campaign Detection: North Korean Hackers Linked to the APT37 Group Use New VeilShell Malware Targeting Southeast Asia 4 min read CVEs Shrouded#Sleep Campaign Detection: North Korean Hackers Linked to the APT37 Group Use New VeilShell Malware Targeting Southeast Asia by Veronika Zahorulko Uncoder for Flexible Threat Detection: From Cloud to Air-Gapped Networks 5 min read SOC Prime Platform Uncoder for Flexible Threat Detection: From Cloud to Air-Gapped Networks by Eugene Tkachenko Gamaredon Attack Detection: Cyber-Espionage Operations Against Ukraine by the russia-linked APT  4 min read CVEs Gamaredon Attack Detection: Cyber-Espionage Operations Against Ukraine by the russia-linked APT  by Veronika Zahorulko SnipBot Detection: A New RomCom Malware Variant Leverages a Custom Code Obfuscation Method and Sophisticated Evasion Techniques 3 min read CVEs SnipBot Detection: A New RomCom Malware Variant Leverages a Custom Code Obfuscation Method and Sophisticated Evasion Techniques by Daryna Olyniychuk Vendor-Agnostic Cybersecurity: Adapting to the Future of Threat Detection 5 min read SIEM & EDR Vendor-Agnostic Cybersecurity: Adapting to the Future of Threat Detection by Eugene Tkachenko Earth Baxia Attack Detection: China-Backed Hackers Use Spear-Phishing, Exploit the GeoServer Vulnerability (CVE-2024-36401), and Apply a New EAGLEDOOR Malware to Target APAC 4 min read CVEs Earth Baxia Attack Detection: China-Backed Hackers Use Spear-Phishing, Exploit the GeoServer Vulnerability (CVE-2024-36401), and Apply a New EAGLEDOOR Malware to Target APAC by Veronika Zahorulko CVE-2024-6670 and CVE-2024-6671 Detection: RCE Attacks Exploiting Critical SQL Injection Vulnerabilities in WhatsUp Gold  3 min read CVEs CVE-2024-6670 and CVE-2024-6671 Detection: RCE Attacks Exploiting Critical SQL Injection Vulnerabilities in WhatsUp Gold  by Veronika Zahorulko RansomHub Ransomware Detection: Attackers Exploits Kaspersky’s TDSSKiller to Disable EDR Systems 3 min read CVEs RansomHub Ransomware Detection: Attackers Exploits Kaspersky’s TDSSKiller to Disable EDR Systems by Daryna Olyniychuk