Today > vulnerabilities   -   You can now download lists of IOCs here!

Tag: meshagent

2 attack reports | 0 vulnerabilities

Attack reports

Analyzing the Awaken Likho APT group implant: new tools and techniques

A new campaign by the Awaken Likho APT group targeting Russian government agencies and industrial enterprises was discovered in June 2024. The group has significantly changed its attack methods, now preferring the MeshCentral platform agent instead of UltraVNC for remote access. The implant is deli…

apt
phishing
meshagent
meshcentral
2024-10-07
Published: October 7, 2024

Downloadable IOCs 0

CheckMesh: Hidden Threats in Your FW

This report examines an advanced cyber-attack targeting an Israeli enterprise, where a sophisticated threat actor compromised a Check Point firewall by deploying a malicious ELF implant known as MeshAgent. The implant, disguised as a legitimate process, enabled encrypted communication with the atta…

credential theft
lateral movement
2024-08-05
meshagent
encrypted communication
advanced persistent threat
firewall compromise
Published: August 5, 2024

Downloadable IOCs 9

» Click here to see all Attack Reports «