Cobalt Strike

3 minute read

New Winos4.0 Malware Targeting Windows via Fake Gaming Apps

A sophisticated malware called Winos4.0 is being disguised as harmless gaming applications to infiltrate Windows-based systems. Learn about…

byDeeba Ahmed

November 6, 2024

3 minute read

Operation Morpheus Disrupts 593 Cobalt Strike Servers Used for Ransomware

Global Operation Morpheus dismantles Cobalt Strike network: Law enforcement takes down criminal infrastructure used for ransomware and data…

byDeeba Ahmed

July 4, 2024

2 minute read

Ukraine Hit by Cobalt Strike Campaign Using Malicious Excel Files

Beware Macro! Ukrainian users and cyberinfrastructure are being hit by a new malware campaign in which hackers are…

byDeeba Ahmed

June 4, 2024

4 minute read

Gelsemium APT Group Uses “Rare” Backdoor in Southeast Asian Attack

Elusive APT Group ‘Gelsemium’ Emerges in Rare Southeast Asian Attack, Unveils Unique Tactics. KEY FINDINGS Cybersecurity researchers at…

byWaqas

September 22, 2023

3 minute read

Microsoft and Fortra to Take Down Malicious Cobalt Strike Infrastructure

Cobalt Strike is a legitimate post-exploitation tool designed by Raphael Mudge of Fortra for adversary simulation but it has also been abused by cybercriminals.

byDeeba Ahmed

April 7, 2023

New Trickbot attack installs fake 1Password manager to extract data

2 minute read

New Trickbot attack setup fake 1Password installer to extract data

The fake 1Password installer is used to launch Cobalt Strike helping the attackers collect information about multiple systems in the network.

byWaqas

August 16, 2021

2 minute read

Email claiming Kaseya patch drops Cobalt Strike malware

The malicious email campaign is claiming to contain a patch for the Kaseya vulnerability but in fact, it is the infamous Cobalt Strike malware.

bySudais Asif

July 8, 2021

2 minute read

Gootloader exploits websites via SEO to spread ransomware, trojans

Researchers have warned that Gootloader campaigns generally target users in the US, Germany, France, and South Korea.

byDeeba Ahmed

March 3, 2021

2 minute read

Hackers abusing Google App Engine to spread PDF malware

The Cobalt Strike advanced persistent threat (APT) group is using Google App Engine to spread PDF malware against financial firms. The IT…

byWaqas

January 26, 2019

The Latest

Operation Lunar Peek: More Than 2,000 Palo Alto Network Firewalls Hacked

Fraud Prevention in Online Payments: A Practical Guide

US and Europe Account for 73% of Global Exposed ICS Systems

Malware Bypasses Microsoft Defender and 2FA to Steal $24K in Crypto

Cobalt Strike

New Winos4.0 Malware Targeting Windows via Fake Gaming Apps

Operation Morpheus Disrupts 593 Cobalt Strike Servers Used for Ransomware

Ukraine Hit by Cobalt Strike Campaign Using Malicious Excel Files

Gelsemium APT Group Uses “Rare” Backdoor in Southeast Asian Attack

Microsoft and Fortra to Take Down Malicious Cobalt Strike Infrastructure

New Trickbot attack setup fake 1Password installer to extract data

Email claiming Kaseya patch drops Cobalt Strike malware

Gootloader exploits websites via SEO to spread ransomware, trojans

Hackers abusing Google App Engine to spread PDF malware

Halo Security Launches Slack Integration for Real-Time Alerts on New Assets and Vulnerabilities

SquareX Brings Industry’s First Browser Detection Response Solution to AISA Melbourne CyberCon 2024

ANY.RUN Sandbox Now Automates Interactive Analysis of Complex Cyber Attack Chains

Sweet Security Announces Availability of its Cloud Native Detection & Response Platform on the AWS Marketplace

ATPC Cyber Forum to Focus on Next Generation Cybersecurity and Artificial Intelligence Issues