UNC4191 Threat Group Targets Entities In The Philippines
The UNC4191 threat group was discovered targeting entities in the Philippines with custom malware and the NCAT command-line networking utility.
The malicious software is written in C/C++, replicates by infecting new removable drives, and creates a reverse shell to the actor’s command and control server.
Registry Run keys are used for persistence while multiple legitimate binaries are leveraged for DLL Side-Loading.
Featured Resources
blog
When Operational Efficiency Equals Compliance
This is Part 3 of our five-part series on Continuous Threat Exposure Management (CTEM). In today’s regulatory landscape, operational efficiency
CUSTOMERS
Non-profit Increases Financial Efficiency and Strengthens Cybersecurity Defenses
Facing increasing threats and tighter budgets, Walsall Housing Group Limited (whg), a UK housing association, turned to Cymulate to optimize
blog
Finding the Right Fit: Vulnerability Assessment vs. Penetration Testing
With more cyber threats than ever before, protecting your organization’s assets and sensitive data has never been more critical. Businesses
Subscribe to Our Blog
Subscribe now to get the latest insights, expert tips and updates on threat exposure validation.
Subscribe