Back to Blog

Tag: Threat Hunting Content

RansomHub Ransomware Detection: Attackers Exploits Kaspersky’s TDSSKiller to Disable EDR Systems 3 min read CVEs RansomHub Ransomware Detection: Attackers Exploits Kaspersky’s TDSSKiller to Disable EDR Systems by Daryna Olyniychuk SOC Prime Threat Bounty Digest — August 2024 Results 3 min read SOC Prime Platform SOC Prime Threat Bounty Digest — August 2024 Results by Alla Yurchenko Repellent Scorpius: Novel RaaS Group Actively Distributes Cicada3301 Ransomware Variant 3 min read CVEs Repellent Scorpius: Novel RaaS Group Actively Distributes Cicada3301 Ransomware Variant by Daryna Olyniychuk Detect WikiLoader Attacks: Adversaries Leverage Fake GlobalProtect VPN Software to Deliver a New Malware Variant via SEO Poisoning 3 min read CVEs Detect WikiLoader Attacks: Adversaries Leverage Fake GlobalProtect VPN Software to Deliver a New Malware Variant via SEO Poisoning by Veronika Zahorulko RansomHub Detection: The FBI, CISA, and Partners Warn Against a Growing RaaS Variant Targeting Critical Infrastructure Organizations 4 min read CVEs RansomHub Detection: The FBI, CISA, and Partners Warn Against a Growing RaaS Variant Targeting Critical Infrastructure Organizations by Veronika Zahorulko PEAKLIGHT Malware Detection: New Stealthy Downloader Leveraged in Attacks Against Windows Systems 3 min read CVEs PEAKLIGHT Malware Detection: New Stealthy Downloader Leveraged in Attacks Against Windows Systems by Daryna Olyniychuk MoonPeak Trojan Detection: North Korean Hackers Deploy Novel RAT During Their Latest Malicious Campaign 3 min read CVEs MoonPeak Trojan Detection: North Korean Hackers Deploy Novel RAT During Their Latest Malicious Campaign by Daryna Olyniychuk UAC-0020 (Vermin) Activity Detection: A New Phishing Attack Abusing the Topic of Prisoners of War at the Kursk Front and Using FIRMACHAGENT Malware 3 min read CVEs UAC-0020 (Vermin) Activity Detection: A New Phishing Attack Abusing the Topic of Prisoners of War at the Kursk Front and Using FIRMACHAGENT Malware by Veronika Zahorulko CVE-2024-7593 Detection: A Critical Vulnerability in Ivanti Virtual Traffic Manager Enables Unauthorized Admin Access 3 min read CVEs CVE-2024-7593 Detection: A Critical Vulnerability in Ivanti Virtual Traffic Manager Enables Unauthorized Admin Access by Daryna Olyniychuk How SOC Prime Products Address 5 Cybersecurity Challenges 8 min read SOC Prime Platform How SOC Prime Products Address 5 Cybersecurity Challenges by Kacper Bimkiewicz