Back to Blog

Tag: Threat Hunting Content

What Is the MITRE ATT&CK® Framework? Getting Started with ATT&CK 13 min read SIEM & EDR What Is the MITRE ATT&CK® Framework? Getting Started with ATT&CK by Karolina Koval AgentTesla Spyware Massively Distributed in Phishing Campaigns Targeting Ukrainian, Austrian, and German Organizations 3 min read CVEs AgentTesla Spyware Massively Distributed in Phishing Campaigns Targeting Ukrainian, Austrian, and German Organizations by Veronika Zahorulko HYPERSCRAPE Detection: Iranian Cyberespionage Group APT35 Uses a Custom Tool to Steal User Data 3 min read CVEs HYPERSCRAPE Detection: Iranian Cyberespionage Group APT35 Uses a Custom Tool to Steal User Data by Veronika Zahorulko HavanaCrypt Ransomware Detection: New Ransomware Family Wreaks Havoc 2 min read CVEs HavanaCrypt Ransomware Detection: New Ransomware Family Wreaks Havoc by Anastasiia Yevdokimova PyPi Malware Detection: Stealing Discord Tokens to Spread Malware 3 min read CVEs PyPi Malware Detection: Stealing Discord Tokens to Spread Malware by Anastasiia Yevdokimova Detecting SEABORGIUM Campaigns: A Cyberespionage Group Targeting Governments, Military, and NGOs Across Europe 3 min read CVEs Detecting SEABORGIUM Campaigns: A Cyberespionage Group Targeting Governments, Military, and NGOs Across Europe by Daryna Olyniychuk BlueSky Ransomware Detection: Targets Windows Hosts and Leverages Multithreading for Faster Encryption 4 min read CVEs BlueSky Ransomware Detection: Targets Windows Hosts and Leverages Multithreading for Faster Encryption by Veronika Zahorulko Cuba Ransomware Detection: Tropical Scorpius Threat Actors Deploy Novel RAT Malware in Targeted Attacks 5 min read CVEs Cuba Ransomware Detection: Tropical Scorpius Threat Actors Deploy Novel RAT Malware in Targeted Attacks by Veronika Zahorulko Armageddon APT aka UAC-0010 Uses GammaLoad and GammaSteel Malware in Targeted Cyber-Attacks on Ukraine 3 min read CVEs Armageddon APT aka UAC-0010 Uses GammaLoad and GammaSteel Malware in Targeted Cyber-Attacks on Ukraine by Veronika Zahorulko CVE-2022-27925 Detection: Mass Exploitation of Remote Code Execution (RCE) Vulnerability in Zimbra Collaboration Suite 3 min read CVEs CVE-2022-27925 Detection: Mass Exploitation of Remote Code Execution (RCE) Vulnerability in Zimbra Collaboration Suite by Veronika Zahorulko