Back to Blog

Tag: Threat Hunting Content

Turla Activity Detection: russian Cyberespionage Group Targeting Ukraine Uses Decade-Old USB-Delivered Andromeda Malware to Spread Novel Backdoors 4 min read CVEs Turla Activity Detection: russian Cyberespionage Group Targeting Ukraine Uses Decade-Old USB-Delivered Andromeda Malware to Spread Novel Backdoors by Veronika Zahorulko SOC Prime Introduces The Prime Hunt 5 min read SIEM & EDR SOC Prime Introduces The Prime Hunt by Veronika Zahorulko BlueNoroff Group Activity Detection: Threat Actors Apply Novel Methods to Bypass Windows Mark-of-the-Web (MoTW) Protection 4 min read CVEs BlueNoroff Group Activity Detection: Threat Actors Apply Novel Methods to Bypass Windows Mark-of-the-Web (MoTW) Protection by Veronika Zahorulko IcedID Botnet Detection: Malvertising Attacks Abusing Google Pay-Per-Click (PPC) Ads 4 min read CVEs IcedID Botnet Detection: Malvertising Attacks Abusing Google Pay-Per-Click (PPC) Ads by Veronika Zahorulko OWASSRF Exploit Detection: New Exploit Method Abuses Exchange Servers to Bypass ProxyNotShell (CVE-2022-41040 and CVE-2022-41082) Mitigations and Gain RCE 4 min read CVEs OWASSRF Exploit Detection: New Exploit Method Abuses Exchange Servers to Bypass ProxyNotShell (CVE-2022-41040 and CVE-2022-41082) Mitigations and Gain RCE by Daryna Olyniychuk Trident Ursa aka Gamaredon APT Attack Detection: Russia-Backed Hackers Escalate Offensive Activity by Targeting a Petroleum Refinery in a NATO Country  5 min read CVEs Trident Ursa aka Gamaredon APT Attack Detection: Russia-Backed Hackers Escalate Offensive Activity by Targeting a Petroleum Refinery in a NATO Country  by Veronika Zahorulko FateGrab/StealDeal Detection: Phishing Attacks by the UAC-0142 Group Against Ukrainian Government Entities Targeting DELTA Users  3 min read CVEs FateGrab/StealDeal Detection: Phishing Attacks by the UAC-0142 Group Against Ukrainian Government Entities Targeting DELTA Users  by Veronika Zahorulko AppleJeus Malware Detection: North Korea-Linked Lazarus APT Spreads Malicious Strains Masquerading as Cryptocurrency Apps 4 min read CVEs AppleJeus Malware Detection: North Korea-Linked Lazarus APT Spreads Malicious Strains Masquerading as Cryptocurrency Apps by Veronika Zahorulko CVE-2022-41974, CVE-2022-41973, CVE-2022-3328 Exploit Detection: Three Linux Vulnerabilities Chained to Gain Full Root Privileges 4 min read CVEs CVE-2022-41974, CVE-2022-41973, CVE-2022-3328 Exploit Detection: Three Linux Vulnerabilities Chained to Gain Full Root Privileges by Daryna Olyniychuk Emotet Detection: Infamous Botnet Resurfaces to the Email Threat Landscape 3 min read CVEs Emotet Detection: Infamous Botnet Resurfaces to the Email Threat Landscape by Veronika Zahorulko