Back to Blog

Tag: Threat Hunting Content

PURPLEURCHIN Campaign Detection: A New Crypto Mining Operation Massively Abuses GitHub Actions and Other Popular Free CI/CD Service Accounts   3 min read CVEs PURPLEURCHIN Campaign Detection: A New Crypto Mining Operation Massively Abuses GitHub Actions and Other Popular Free CI/CD Service Accounts   by Veronika Zahorulko RomCom Backdoor Detection: Cyber Attack on Ukrainian State Bodies Attributed to Cuba Ransomware Operators aka Tropical Scorpius (UNC2596) Group 4 min read CVEs RomCom Backdoor Detection: Cyber Attack on Ukrainian State Bodies Attributed to Cuba Ransomware Operators aka Tropical Scorpius (UNC2596) Group by Veronika Zahorulko Detecting Text4Shell (CVE-2022-42889), Critical RCE in Apache Commons Text 4 min read CVEs Detecting Text4Shell (CVE-2022-42889), Critical RCE in Apache Commons Text by Daryna Olyniychuk Magniber Ransomware Detection: Threat Actors Spread JavaScript Files Targeting Windows Users 4 min read CVEs Magniber Ransomware Detection: Threat Actors Spread JavaScript Files Targeting Windows Users by Veronika Zahorulko SOC Prime Threat Bounty — September 2022 Results 3 min read SOC Prime Threat Bounty — September 2022 Results by Alla Yurchenko CVE-2022-40684 Detection: A Critical Fortinet Authentication Bypass Vulnerability Exploited in the Wild 3 min read CVEs CVE-2022-40684 Detection: A Critical Fortinet Authentication Bypass Vulnerability Exploited in the Wild by Veronika Zahorulko On Demand Subscription: Drive Immediate Value From SOC Prime Platform 4 min read SOC Prime Platform On Demand Subscription: Drive Immediate Value From SOC Prime Platform by Veronika Zahorulko Cheerscrypt Ransomware Detection: China-Backed Hackers, Emperor Dragonfly aka Bronze Starlight, Are Behind Ongoing Cyber Attacks 3 min read CVEs Cheerscrypt Ransomware Detection: China-Backed Hackers, Emperor Dragonfly aka Bronze Starlight, Are Behind Ongoing Cyber Attacks by Veronika Zahorulko SOC Prime to Present at the Tenth EU MITRE ATT&CK® Community Workshop 3 min read SOC Prime to Present at the Tenth EU MITRE ATT&CK® Community Workshop by Veronika Zahorulko ProxyNotShell: Detecting CVE-2022-41040 and CVE-2022-41082, Novel Microsoft Exchange Zero-Day Vulnerabilities Actively Exploited in the Wild 3 min read CVEs ProxyNotShell: Detecting CVE-2022-41040 and CVE-2022-41082, Novel Microsoft Exchange Zero-Day Vulnerabilities Actively Exploited in the Wild by Veronika Zahorulko