SCD Continuous Threat Hunting Sources
Continuous Threat Hunting Sources
March 24, 2024
Feedly: TeamCity Vulnerability Exploits Lead to Jasmin Ransomware, Other Ma…
Feedly: Cybercriminals Accelerate Online Scams During Ramadan and Eid Fitr
March 23, 2024
Feedly: Ongoing ITG05 operations leverage evolving malware arsenal in globa…
https://securityintelligence.com/x-force/itg05-leverages-malware-arsenal/
Feedly: APT29 Uses WINELOADER to Target German Political Parties
https://www.mandiant.com/resources/blog/apt29-wineloader-german-political-parties
Feedly: Hackers Using Cracked Software on GitHub to Spread RisePro Info Ste…
https://thehackernews.com/2024/03/hackers-using-cracked-software-on.html
Feedly: The Updated APT Playbook: Tales from the Kimsuky threat actor group
Feedly: InfoSec MASHUP – Week 12/2024
https://infosec-mashup.santolaria.net/p/infosec-mashup-week-122024
Feedly: SSL interception on Hetzner/Linode targeting largest .ru XMPP servi…
https://notes.valdikss.org.ru/jabber.ru-mitm/
March 22, 2024
Feedly: Rewterz Threat Alert – PatchWork APT Threat Actor Group – Active IOCs
Feedly: Bringing Access Back – Initial Access Brokers Exploit F5 BIG-IP (CV…
https://www.mandiant.com/resources/blog/initial-access-brokers-exploit-f5-screenconnect
Feedly: HTB Sherlock: Meerkat
https://blog.cyberethical.me/htb-sherlock-meerkat
Feedly: Security Brief: TA450 Uses Embedded Links in PDF Attachments in Lat…
Feedly: Heres Why Twitter Sends You To A Different Site Than What You Clicked
Feedly: TinyTurla Evolved TTPs To Stealthly Attack Enterprise Organizations
https://gbhackers.com/tinyturla-evolved-ttps-stealth-attacks/
Feedly: Beware: Malicious Android Malware Disguised as Government Alerts
https://blogs.quickheal.com/beware-malicious-android-malware-disguised-as-government-alerts/
Feedly: Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
March 21, 2024
Feedly: Securonix Threat Research Security Advisory: Analysis of New DEEP#G…
Feedly: The Not-so-True People-Search Network from China
https://krebsonsecurity.com/2024/03/the-not-so-true-people-search-network-from-china/
Feedly: Malware Analysis: Blind Eagle’s North American Journey
https://www.esentire.com/blog/blind-eagles-north-american-journey
Feedly: Phishing Campaign Leveraging Microsoft Office Templates to Deliver …
Feedly: PIKABOT, I choose you!
Feedly: North Korea’s Kimsuky Group Equipped to Exploit Windows Help files
https://gbhackers.com/kimsuky-group-exploit-windows-help-files/
Feedly: Privacy Tip #392 – Legitimate Platforms and AI Used to Bypass MFA
https://www.lexblog.com/2024/03/21/privacy-tip-392-legitimate-platforms-and-ai-used-to-bypass-mfa/
Feedly: Rewterz Threat Alert – Novel Phishing Campaign Utilizes Sophisticat…
Feedly: New details on TinyTurla’s post-compromise activity reveal full kil…
https://blog.talosintelligence.com/tinyturla-full-kill-chain/
Feedly: Rewterz Threat Alert – Iran-Linked Threat Actor UNC1549 Targets Mid…
Feedly: “Pig butchering” is an evolution of a social engineering tactic we’…
March 20, 2024
Feedly: It’s tax season, and scammers are a step ahead of filers, Microsoft…
https://www.theregister.com/2024/03/20/its_tax_season_and_scammers/
Feedly: Android malware, Android malware and more Android malware
https://securelist.com/crimeware-report-android-malware/112121/
Feedly: Threat actors leverage document publishing sites for ongoing creden…
https://blog.talosintelligence.com/threat-actors-leveraging-document-publishing-sites/
Feedly: TeamCity Vulnerability Exploits Lead to Jasmin Ransomware, Other Ma…
Feedly: Application consent attacks: Patterns, detection, and mitigation
https://fieldeffect.com/blog/application-consent-attacks
Feedly: The Updated APT Playbook: Tales from the Kimsuky threat actor group
Feedly: Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
Feedly: Managing Attack Surface | Huntress Blog
https://www.huntress.com/blog/managing-attack-surface
March 19, 2024
Feedly: Andariel Group Exploiting Korean Asset Management Solutions (MeshAg…
https://asec.ahnlab.com/en/63192/
Feedly: State-Sponsored Russian Phishing Campaigns Target a Variety of Indu…
https://blog.knowbe4.com/russian-phishing-campaigns-target-variety-of-industries
Feedly: Rewterz Threat Alert – Cobalt Strike Malware – Active IOCs
https://www.rewterz.com/rewterz-news/rewterz-threat-alert-cobalt-strike-malware-active-iocs-53/
Feedly: Prolific Chinese Threat Campaign Targets 100+ Victims
https://www.infosecurity-magazine.com/news/chinese-campaign-targets-100/
Feedly: New and Evasive Method Delivers NetSupport RAT in Operation PhantomBlu