Trickbot Malware Review
Technical Details TrickBot is an advanced Trojan dating back to 2016 that malicious actors spread primarily by spearphishing campaigns using
Read more
Author: Chris Stewart
Conti Group MITRE ATT&CK Techniques Part Three
MITRE ATT&CK Techniques Conti ransomware uses the ATT&CK techniques listed in table 1. Table 1: Conti ATT&CK techniques for enterprise
Read more
Conti Group – Tools and Tactics Part Two
Date: March 21st 2022 Part two of this Conti Ransomware adventure is where I highlight some tools and tactics in
Read more
Conti Group – Indicators of Compromise
Since the end of February, we have seen news about Conti Group including leaked information and which included detailed operations
Read more
DNS Tunnelling Linux Botnet
A new backdoor has been observed targeting Linux systems with the goal of machine escalation where malicious actors are enrolling
Read more
Linux Dirty Pipe
Updated March 17th 2022 Risk: Critical CVE: CVE-2022-0847 Affected Version: Linux Kernel 5.8 and later versions upto 5.10.101/5.15.24/5.16.10 Fix Version:
Read more
Three Critical Windows Patch
Microsoft today issued security updates yesterday and three of which were critical and one that has a known proof-of-concept available
Read more
Emotet New Techniques for 2022
Emotet continues to evolve its techniques and has been observed using hexadecimal and octal representations of IP addresses, likely to
Read more
SAP Critical Exploit ICM Manager
Date: Feburary 12th 2021 Risk: Critical CVE: CVE-2022-22536, CVE-2022-22532 and CVE-2022-22533 SAP released updates to address vulnerabilities affecting multiple products, including critical
Read more
APT Actors Exploiting Zoho ManageEngine ServiceDesk
Date: December 30th 2021 TLP: White Risk: Critical Vulnerability: CVE-2021-44077 The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) are
Read more