Tag: cloudflare

2 attack reports | 0 vulnerabilities

Attack reports

Threat Actor Abuses Cloudflare Tunnels to Deliver RATs

Published: August 1, 2024

Proofpoint is tracking a cluster of cybercriminal threat activity leveraging Cloudflare Tunnels to deliver malware, particularly remote access trojans (RATs) like Xworm, AsyncRAT, VenomRAT, GuLoader, and Remcos. The campaigns employ various techniques, such as using URL files to establish connectio…

Downloadable IOCs 13

xworm
remcos
asyncrat
venomrat
guloader
rats
webdav
cloudflare
2024-08-01

Bondnet Using High-Performance Bots For C2 Server

Published: June 17, 2024

Security researchers at ASEC have discovered that a threat actor is using high-performance bots to turn compromised systems into their central server (C2) servers, using tools such as the Cloudflare tunneling client.

Downloadable IOCs 27

rdp
2024-06-17
cloudflare
bot net
hfs
bondnet

Threat Actor Abuses Cloudflare Tunnels to Deliver RATs

Published: August 1, 2024

Proofpoint is tracking a cluster of cybercriminal threat activity leveraging Cloudflare Tunnels to deliver malware, particularly remote access trojans (RATs) like Xworm, AsyncRAT, VenomRAT, GuLoader, and Remcos. The campaigns employ various techniques, such as using URL files to establish connectio…

Downloadable IOCs 13

xworm
remcos
asyncrat
venomrat
guloader
rats
webdav
cloudflare
2024-08-01

Bondnet Using High-Performance Bots For C2 Server

Published: June 17, 2024

Security researchers at ASEC have discovered that a threat actor is using high-performance bots to turn compromised systems into their central server (C2) servers, using tools such as the Cloudflare tunneling client.

Downloadable IOCs 27

rdp
2024-06-17
cloudflare
bot net
hfs
bondnet
» Click here to see all Attack Reports «