Tag: marko polo

2 Attack Reports | 0 Vulnerabilities

Attack reports

WebDAV-as-a-Service: Uncovering the infrastructure behind Emmenhtal loader distribution - Sekoia.io Blog

The Emmenhtal loader, also known as PeakLight, operates in a memory-only manner, making it difficult to detect and analyse. It is primarily used to distribute other malicious payloads, including well-known infostealers that target sensitive information.
darkgate
dcrat
webdav
2024-09-19
marko polo
zgrat
google cloud
clearfake
emmenhtal
peaklight
selfau3
Published: September 19, 2024
Downloadable IOCs: 120

Marko Polo Navigates Uncharted Waters with Infostealer Empire

An analysis has uncovered a highly adaptable cybercriminal group, codenamed 'Marko Polo', that operates sophisticated scams employing information-stealing malware to target individuals and organizations globally. They primarily operate through social media, impersonating legitimate brands in sector…
impersonation
infostealers
scams
social_engineering
2024-09-17
cybercriminal
marko polo
Published: September 17, 2024
Downloadable IOCs: 47
Click here to see more Attack Reports