Bluebottle Attacks The Financial Sector In Africa
The Bluebottle threat group, also known as Common Raven and OPERA1ER, targeted the financial sector in French speaking countries in Africa with a range of dual-use tools, commodity malware, and living-of-the-land utilities.
The various tools and malicious software were used for discovery, network tunneling, persistence, and defense evasion.
The Netwire and Quasar RATs along with Cobalt Strike, GuLoader, Mimikatz, and multiple Microsoft Windows command-line utilities were used to carry out the operation.
Featured Resources
blog
Finding the Right Fit: Vulnerability Assessment vs. Penetration Testing
With more cyber threats than ever before, protecting your organization’s assets and sensitive data has never been more critical. Businesses
blog
Cyber Threats in the Seams
It’s easy for even the most vigilant security teams to overlook a critical reality: no one fully understands all the
CUSTOMERS
Law Enforcement Agency Restores Confidence in Cyber Defenses
This small cybersecurity team is tasked with protecting the organization’s fraud services and all electronic records related to criminal investigations.
Subscribe to Our Blog
Subscribe now to get the latest insights, expert tips and updates on threat exposure validation.
Subscribe