DeadRinger-Exposing Chinese Threat Actors Targeting Major Telcos

Aug 05, 2021

Following Biden administration's public rebuke of China's Ministry of State Security for the recent HAFNIUM attacks that exploited vulnerabilities in unpatched Microsoft Exchange Servers and put t...

DeadRinger-Exposing Chinese Threat Actors Targeting Major Telcos

Aug 05, 2021

Following Biden administration's public rebuke of China's Ministry of State Security for the recent HAFNIUM attacks that exploited vulnerabilities in unpatched Microsoft Exchange Servers and put t...

DeadRinger-Exposing Chinese Threat Actors Targeting Major Telcos

Aug 05, 2021

Following Biden administration's public rebuke of China's Ministry of State Security for the recent HAFNIUM attacks that exploited vulnerabilities in unpatched Microsoft Exchange Servers and put t...

MeteorExpress-Mysterious Wiper Paralyzes Iranian Trains with Epic Troll

Aug 03, 2021

The attackers taunted the Iranian government as hacked displays instructed passengers to direct their complaints to the phone number of the Iranian Supreme Leader Khamenei's office. SentinelLabs r...

MeteorExpress-Mysterious Wiper Paralyzes Iranian Trains with Epic Troll

Aug 03, 2021

The attackers taunted the Iranian government as hacked displays instructed passengers to direct their complaints to the phone number of the Iranian Supreme Leader Khamenei's office. SentinelLabs r...

MeteorExpress-Mysterious Wiper Paralyzes Iranian Trains with Epic Troll

Aug 03, 2021

The attackers taunted the Iranian government as hacked displays instructed passengers to direct their complaints to the phone number of the Iranian Supreme Leader Khamenei's office. SentinelLabs r...

Solarmarker InfoStealer Malware Is Back

Aug 02, 2021

Healthcare and education sectors are the frequent targets of a new surge in credential harvesting activity from what's a "highly modular" .NET-based information stealer and keylogger, charting the ...

Solarmarker InfoStealer Malware Is Back

Aug 02, 2021

Healthcare and education sectors are the frequent targets of a new surge in credential harvesting activity from what's a "highly modular" .NET-based information stealer and keylogger, charting the ...

Crimea Manifesto deploys VBA Rat using double attack vectors

Aug 01, 2021

On July 21, 2021, reseach teams identified a suspicious document named "Manifest.docx" that downloads and executes two templates: one is macro-enabled and the other is an html object that contains ...

Crimea Manifesto deploys VBA Rat using double attack vectors

Aug 01, 2021

On July 21, 2021, reseach teams identified a suspicious document named "Manifest.docx" that downloads and executes two templates: one is macro-enabled and the other is an html object that contains ...