| Title |
Published |
Tags |
Description |
Number of indicators |
| Ransomware Roundup - Underground |
Sept. 2, 2024, 4:21 p.m. |
|
The Underground ransomware, first observed in July 2023, targets Windows machines by encrypting files and demanding ransom. Attri… |
4 |
| Analysis of two arbitrary code execution vulnerabilities affecting WPS Office |
Aug. 30, 2024, 5:48 p.m. |
|
ESET researchers discovered two code execution vulnerabilities in WPS Office for Windows. CVE-2024-7262 was exploited by APT-C-60… |
5 |
| AppDomainManager Injection Technique Used to Execute Malware on Windows |
Aug. 26, 2024, 1:09 p.m. |
|
Cybersecurity specialists have observed an escalation in attacks employing the AppDomainManager Injection technique, which exploi… |
9 |
| Exploiting CVE-2024-21412: A Stealer Campaign Unleashed |
July 24, 2024, 8:02 a.m. |
|
This report details a malicious campaign exploiting the CVE-2024-21412 vulnerability in Microsoft Windows SmartScreen to bypass s… |
27 |
| MoonWalk |
July 12, 2024, 4:11 p.m. |
|
This blog post examines MoonWalk, a new backdoor employed by APT41, a China-based threat actor known for campaigns in Southeast A… |
3 |
| Resurrecting Internet Explorer: Threat Actors Using Zero-day Tricks in Internet Shortcut File to Lure Victims (CVE-2024-38112) |
July 10, 2024, 9:24 a.m. |
|
Check Point Research discovered threat actors leveraging novel techniques to execute malicious code on Windows systems by exploit… |
7 |
| Guntior - the story of an advanced bootkit that doesn't rely on Windows disk drivers |
May 8, 2024, 1:32 p.m. |
|
Amid the rise of bootkits at the time, a dropper was captured in-the-wild and posted on a malware tracker. The malware was called… |
6 |
| Ransomware Roundup (April 29, 2024) |
April 29, 2024, 6:21 p.m. |
|
This concise report provides insights into the evolving ransomware landscape, covering the KageNoHitobito and DoNex variants. It … |
7 |