Tag: poison ivy

2 Attack Reports | 0 Vulnerabilities

Attack reports

Beware of phishing attacks by APT-C-01 (Poison Ivy)

APT-C-01, known as Poison Ivy, is a persistent threat group targeting defense, government, technology, and education sectors since 2007. They specialize in phishing attacks, including watering hole and spear-phishing, using personalized bait content. Recent observations show the group creating fake…
apt
phishing
poison ivy
2024-12-03
sliver rat
Published: December 3, 2024
Downloadable IOCs: 7

FHAPPI Campaign APT10 FreeHosting APT PowerSploit Poison Ivy

This analysis details a malicious campaign dubbed 'FHAPPI' by the researcher, which utilized compromised Geocities Japan accounts to host malware payloads. The campaign leveraged VBScript and PowerShell scripts to execute encoded commands, ultimately delivering the Poison Ivy remote access trojan (…
malware
apt
powershell
2024-06-19
poison ivy
poisonivy
geocities
encodedpayload
breut
darkmoon
Published: June 19, 2024
Downloadable IOCs: 5
Click here to see more Attack Reports