Tag: gammadrop

2 Attack Reports | 0 Vulnerabilities

Attack reports

Leveraging Cloudflare Tunnels for GammaDrop Infrastructure

BlueAlpha, a Russian state-sponsored cyber threat group, has evolved its malware delivery tactics by exploiting Cloudflare Tunnels to conceal GammaDrop staging infrastructure. The group employs HTML smuggling with sophisticated modifications to bypass email security systems and uses DNS fast-fluxin…
apt
spearphishing
html smuggling
2024-12-05
gammadrop
obfuscation techniques
gammaload
cloudflare tunnels
russian state-sponsored
dns fast-fluxing
Published: December 5, 2024
Downloadable IOCs: 1

BlueAlpha Abuses Cloudflare Tunneling Service for GammaDrop Staging Infrastructure

BlueAlpha, a Russian state-sponsored cyber threat group, has evolved its malware delivery tactics by exploiting Cloudflare Tunnels to conceal GammaDrop staging infrastructure. The group employs HTML smuggling with sophisticated modifications to bypass email security systems and uses DNS fast-fluxin…
apt
spearphishing
html smuggling
2024-12-05
gammadrop
obfuscation techniques
gammaload
cloudflare tunnels
russian state-sponsored
dns fast-fluxing
Published: December 5, 2024
Downloadable IOCs: 0
Click here to see more Attack Reports