Back to Blog

Tag: SOC Prime Platform

BlueNoroff Group Activity Detection: Threat Actors Apply Novel Methods to Bypass Windows Mark-of-the-Web (MoTW) Protection 4 min read CVEs BlueNoroff Group Activity Detection: Threat Actors Apply Novel Methods to Bypass Windows Mark-of-the-Web (MoTW) Protection by Veronika Zahorulko IcedID Botnet Detection: Malvertising Attacks Abusing Google Pay-Per-Click (PPC) Ads 4 min read CVEs IcedID Botnet Detection: Malvertising Attacks Abusing Google Pay-Per-Click (PPC) Ads by Veronika Zahorulko OWASSRF Exploit Detection: New Exploit Method Abuses Exchange Servers to Bypass ProxyNotShell (CVE-2022-41040 and CVE-2022-41082) Mitigations and Gain RCE 4 min read CVEs OWASSRF Exploit Detection: New Exploit Method Abuses Exchange Servers to Bypass ProxyNotShell (CVE-2022-41040 and CVE-2022-41082) Mitigations and Gain RCE by Daryna Olyniychuk Trident Ursa aka Gamaredon APT Attack Detection: Russia-Backed Hackers Escalate Offensive Activity by Targeting a Petroleum Refinery in a NATO Country  5 min read CVEs Trident Ursa aka Gamaredon APT Attack Detection: Russia-Backed Hackers Escalate Offensive Activity by Targeting a Petroleum Refinery in a NATO Country  by Veronika Zahorulko FateGrab/StealDeal Detection: Phishing Attacks by the UAC-0142 Group Against Ukrainian Government Entities Targeting DELTA Users  3 min read CVEs FateGrab/StealDeal Detection: Phishing Attacks by the UAC-0142 Group Against Ukrainian Government Entities Targeting DELTA Users  by Veronika Zahorulko Detecting Fantasy Data Wiper Leveraged by Agrius APT in a Supply-Chain Attack 3 min read CVEs Detecting Fantasy Data Wiper Leveraged by Agrius APT in a Supply-Chain Attack by Daryna Olyniychuk SOC Prime Threat Bounty —  November 2022 Results 3 min read SOC Prime Threat Bounty —  November 2022 Results by Alla Yurchenko DolphinCape Malware Detection: Phishing Campaign Against Ukrainian Railway Transport Organization of Ukraine “Ukrzaliznytsia” Related to the Use of Iranian Shahed-136 Drones 3 min read CVEs DolphinCape Malware Detection: Phishing Campaign Against Ukrainian Railway Transport Organization of Ukraine “Ukrzaliznytsia” Related to the Use of Iranian Shahed-136 Drones by Veronika Zahorulko AppleJeus Malware Detection: North Korea-Linked Lazarus APT Spreads Malicious Strains Masquerading as Cryptocurrency Apps 4 min read CVEs AppleJeus Malware Detection: North Korea-Linked Lazarus APT Spreads Malicious Strains Masquerading as Cryptocurrency Apps by Veronika Zahorulko Emotet Detection: Infamous Botnet Resurfaces to the Email Threat Landscape 3 min read CVEs Emotet Detection: Infamous Botnet Resurfaces to the Email Threat Landscape by Veronika Zahorulko