Browsing Tag
Cobalt Strike
8 posts
Operation Morpheus Disrupts 593 Cobalt Strike Servers Used for Ransomware
Global Operation Morpheus dismantles Cobalt Strike network: Law enforcement takes down criminal infrastructure used for ransomware and data…
Ukraine Hit by Cobalt Strike Campaign Using Malicious Excel Files
Beware Macro! Ukrainian users and cyberinfrastructure are being hit by a new malware campaign in which hackers are…
Gelsemium APT Group Uses “Rare” Backdoor in Southeast Asian Attack
Elusive APT Group ‘Gelsemium’ Emerges in Rare Southeast Asian Attack, Unveils Unique Tactics. KEY FINDINGS Cybersecurity researchers at…
Microsoft and Fortra to Take Down Malicious Cobalt Strike Infrastructure
Cobalt Strike is a legitimate post-exploitation tool designed by Raphael Mudge of Fortra for adversary simulation but it has also been abused by cybercriminals.
New Trickbot attack setup fake 1Password installer to extract data
The fake 1Password installer is used to launch Cobalt Strike helping the attackers collect information about multiple systems in the network.
Email claiming Kaseya patch drops Cobalt Strike malware
The malicious email campaign is claiming to contain a patch for the Kaseya vulnerability but in fact, it is the infamous Cobalt Strike malware.
Gootloader exploits websites via SEO to spread ransomware, trojans
Researchers have warned that Gootloader campaigns generally target users in the US, Germany, France, and South Korea.
Hackers abusing Google App Engine to spread PDF malware
The Cobalt Strike advanced persistent threat (APT) group is using Google App Engine to spread PDF malware against financial firms. The IT…