All Articles (2283)
TACTICAL CYBER INTELLIGENCE REPORT
Actor Type: II
Serial: TR-18-026-001
Countries: all
Report Date: 20180126
Dark Caracal APT Group
Researchers have identified an Advanced Persistent Threat group (APT) identified as Dark Caracal (DC). DC claims to have stolen hundreds of gigabytes of data including personal identifiable information. The types of stolen data include audio recordings, text messages, call records, documents, photos, contact information, secure messaging client content, account data,
TACTICAL CYBER INTELLIGENCE REPORT
Actor Type: II
Serial: TR-18-024-001
Countries: IN, CN
Report Date: 20180124
Iranian APT Groups
APT34
APT34 is involved in long-term cyber espionage operations largely focused in the Middle East. This threat group has targeted a wide variety of industries, including financial, government, energy, chemical, and telecommunications. The group is thought to have been operational since at least 2014 and is likely linked to the Iranian government. The group is also kno
SITUATION REPORT
Actor Type: II
Serial: SR-18-017-002
Countries: IN, CN
Report Date: 20180111
Critical Vulnerabilities in Western Digital ‘My Cloud’ Storage Devices
Various critical vulnerabilities have been identified in Western Digital’s My Cloud network attached storage (NAS) devices, which attackers could use to gain root access to a device.
Western Digital’s My Cloud NAS, is a personal cloud storage unit that organizes photos and videos.[1] It is listed on Amazon as a highly rated device and is
TACTICAL CYBER INTELLIGENCE REPORT
Actor Type: II
Serial: TR-18-009-001
Countries: IN, CN
Report Date: 20180109
Bypassing Antivirus using Amber (Reflective PE Packer)
Amber is a proof-of-concept tool used for bypassing antivirus software. Amber uses techniques that convert Portable Executables (PEs) to reflectively load those PEs. This can be used as a multi-stage payload for infection on a target system. It was developed by Ege Balci and takes advantage of in-memory execution methods. In-m
TACTICAL CYBER INTELLIGENCE REPORT
**********CORRECTED COPY 15 JAN 18. DISREGARD ALL OTHERS**********
Actor Type: II
Serial: TR-18-014-001
Countries: All, KP, KR
Report Date: 20180114
Pyeongyang Olympics Volunteers Targeted with Malware
Wapack Labs observed two specimens of a macro-malware believed to be targeting volunteers at the 2018 Winter Olympics, Pyeongyang, South Korea. Two XLSM documents were uploaded to Virus Total from Korea in late November. The documents are trojanized ver