threat-actors
THREAT ACTOR: Vanilla Tempest
This group has been observed deploying various ransomware families and utilizing sophisticated techniques to evade detection and maximize their impact...
apt
apt
THREAT ACTOR: Mustang Panda
Mustang Panda is a well-known cyber espionage group believed to be based in China. The group is notorious for targeting government entities, non-governmental organizations (NGOs), and private sector organizations, primarily through spear-phishing campaigns and custom malware.
2024
RESEARCH: DPRK 'IT' Workers
These workers often operate globally, leveraging their positions to further the objectives of the North Korean government and its cyber warfare units..
threat-actors
THREAT ACTOR: APT45 ('Onyx Sleet')
Onyx Sleet, also known by aliases such as Andariel, Plutonium, and Silent Chollima, is a North Korean cyber threat actor involved in cyber espionage and targeting critical sectors, including nuclear technology.
orb-networks
RESEARCH: IoCs are dead. Long Live IoCs.
Orb networks, also known as Operational Relay Box (ORB) networks, are sophisticated proxy networks used by APT groups, particularly Chinese cyber-espionage actors, to obfuscate their activities and evade detection.
rootkit
RESEARCH: Top 3 rootkits for Windows 11
Rootkits are a particularly insidious type of malware designed to hide the existence of certain processes or programs from normal methods of detection and enable continued privileged access to a computer.