SCD Continuous Threat Hunting Sources

What is a vCISO and its advantages

Continuous Threat Hunting Sources

March 24, 2024

Feedly: TeamCity Vulnerability Exploits Lead to Jasmin Ransomware, Other Ma…

https://www.trendmicro.com/en_us/research/24/c/teamcity-vulnerability-exploits-lead-to-jasmin-ransomware.html

Feedly: Cybercriminals Accelerate Online Scams During Ramadan and Eid Fitr

https://www.resecurity.com/blog/article/cybercriminals-accelerate-online-scams-during-ramadan-and-eid-fitr

March 23, 2024

Feedly: Ongoing ITG05 operations leverage evolving malware arsenal in globa…

https://securityintelligence.com/x-force/itg05-leverages-malware-arsenal/

Feedly: APT29 Uses WINELOADER to Target German Political Parties

https://www.mandiant.com/resources/blog/apt29-wineloader-german-political-parties

Feedly: Hackers Using Cracked Software on GitHub to Spread RisePro Info Ste…

https://thehackernews.com/2024/03/hackers-using-cracked-software-on.html

Feedly: The Updated APT Playbook: Tales from the Kimsuky threat actor group

https://www.rapid7.com/blog/post/2024/03/20/the-updated-apt-playbook-tales-from-the-kimsuky-threat-actor-group/

Feedly: InfoSec MASHUP – Week 12/2024

https://infosec-mashup.santolaria.net/p/infosec-mashup-week-122024

Feedly: SSL interception on Hetzner/Linode targeting largest .ru XMPP servi…

https://notes.valdikss.org.ru/jabber.ru-mitm/

March 22, 2024

Feedly: Rewterz Threat Alert – PatchWork APT Threat Actor Group – Active IOCs

https://www.rewterz.com/rewterz-news/rewterz-threat-alert-patchwork-apt-threat-actor-group-active-iocs-11

Feedly: Bringing Access Back – Initial Access Brokers Exploit F5 BIG-IP (CV…

https://www.mandiant.com/resources/blog/initial-access-brokers-exploit-f5-screenconnect

Feedly: HTB Sherlock: Meerkat

https://blog.cyberethical.me/htb-sherlock-meerkat

Feedly: Security Brief: TA450 Uses Embedded Links in PDF Attachments in Lat…

https://www.proofpoint.com/us/blog/threat-insight/security-brief-ta450-uses-embedded-links-pdf-attachments-latest-campaign

Feedly: Heres Why Twitter Sends You To A Different Site Than What You Clicked

https://www.redpacketsecurity.com/heres-why-twitter-sends-you-to-a-different-site-than-what-you-clicked/

Feedly: TinyTurla Evolved TTPs To Stealthly Attack Enterprise Organizations

https://gbhackers.com/tinyturla-evolved-ttps-stealth-attacks/

Feedly: Beware: Malicious Android Malware Disguised as Government Alerts

https://blogs.quickheal.com/beware-malicious-android-malware-disguised-as-government-alerts/

Feedly: Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs

https://www.rewterz.com/rewterz-news/rewterz-threat-alert-an-emerging-ducktail-infostealer-active-iocs-43

March 21, 2024

Feedly: Securonix Threat Research Security Advisory: Analysis of New DEEP#G…

https://www.securonix.com/blog/securonix-threat-research-security-advisory-new-deepgosu-attack-campaign/

Feedly: The Not-so-True People-Search Network from China

https://krebsonsecurity.com/2024/03/the-not-so-true-people-search-network-from-china/

Feedly: Malware Analysis: Blind Eagle’s North American Journey

https://www.esentire.com/blog/blind-eagles-north-american-journey

Feedly: Phishing Campaign Leveraging Microsoft Office Templates to Deliver …

https://rhisac.org/threat-intelligence/phishing-campaign-leveraging-microsoft-office-templates-to-deliver-netsupportrat-to-us-based-organizations/

Feedly: PIKABOT, I choose you!

https://www.elastic.co/security-labs/pikabot-i-choose-you?ultron=esl:_threat_research%2Besl_blog_post&blade=twitter&hulk=social&utm_content=12919696750&linkId=364036539

Feedly: North Korea’s Kimsuky Group Equipped to Exploit Windows Help files

https://gbhackers.com/kimsuky-group-exploit-windows-help-files/

Feedly: Privacy Tip #392 – Legitimate Platforms and AI Used to Bypass MFA

https://www.lexblog.com/2024/03/21/privacy-tip-392-legitimate-platforms-and-ai-used-to-bypass-mfa/

Feedly: Rewterz Threat Alert – Novel Phishing Campaign Utilizes Sophisticat…

https://www.rewterz.com/rewterz-news/rewterz-threat-alert-novel-phishing-campaign-utilizes-sophisticated-tactic-to-deploy-netsupport-rat-via-microsoft-office-active-iocs

Feedly: New details on TinyTurla’s post-compromise activity reveal full kil…

https://blog.talosintelligence.com/tinyturla-full-kill-chain/

Feedly: Rewterz Threat Alert – Iran-Linked Threat Actor UNC1549 Targets Mid…

https://www.rewterz.com/rewterz-news/rewterz-threat-alert-iran-linked-threat-actor-unc1549-targets-middle-eastern-defense-and-aerospace-sectors-active-iocs

Feedly: “Pig butchering” is an evolution of a social engineering tactic we’…

https://malware.news/t/pig-butchering-is-an-evolution-of-a-social-engineering-tactic-we-ve-seen-for-years/79971

March 20, 2024

Feedly: It’s tax season, and scammers are a step ahead of filers, Microsoft…

https://www.theregister.com/2024/03/20/its_tax_season_and_scammers/

Feedly: Android malware, Android malware and more Android malware

https://securelist.com/crimeware-report-android-malware/112121/

Feedly: Threat actors leverage document publishing sites for ongoing creden…

https://blog.talosintelligence.com/threat-actors-leveraging-document-publishing-sites/

Feedly: TeamCity Vulnerability Exploits Lead to Jasmin Ransomware, Other Ma…

https://www.trendmicro.com/en_us/research/24/c/teamcity-vulnerability-exploits-lead-to-jasmin-ransomware.html

Feedly: Application consent attacks: Patterns, detection, and mitigation

https://fieldeffect.com/blog/application-consent-attacks

Feedly: The Updated APT Playbook: Tales from the Kimsuky threat actor group

https://blog.rapid7.com/2024/03/20/the-updated-apt-playbook-tales-from-the-kimsuky-threat-actor-group/

Feedly: Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs

https://www.rewterz.com/rewterz-news/rewterz-threat-alert-an-emerging-ducktail-infostealer-active-iocs-42/

Feedly: Managing Attack Surface | Huntress Blog

https://www.huntress.com/blog/managing-attack-surface

March 19, 2024

Feedly: Andariel Group Exploiting Korean Asset Management Solutions (MeshAg…

https://asec.ahnlab.com/en/63192/

Feedly: State-Sponsored Russian Phishing Campaigns Target a Variety of Indu…

https://blog.knowbe4.com/russian-phishing-campaigns-target-variety-of-industries

Feedly: Rewterz Threat Alert – Cobalt Strike Malware – Active IOCs

https://www.rewterz.com/rewterz-news/rewterz-threat-alert-cobalt-strike-malware-active-iocs-53/

Feedly: Prolific Chinese Threat Campaign Targets 100+ Victims

https://www.infosecurity-magazine.com/news/chinese-campaign-targets-100/

Feedly: New and Evasive Method Delivers NetSupport RAT in Operation PhantomBlu

https://perception-point.io/blog/operation-phantomblu-new-and-evasive-method-delivers-netsupport-rat/?&web_view=true

Contact our sales team