Browsing Tag
Cobalt Strike
5 posts
Gelsemium APT Group Uses “Rare” Backdoor in Southeast Asian Attack
Elusive APT Group ‘Gelsemium’ Emerges in Rare Southeast Asian Attack, Unveils Unique Tactics. KEY FINDINGS Cybersecurity researchers at…
New Trickbot attack setup fake 1Password installer to extract data
The fake 1Password installer is used to launch Cobalt Strike helping the attackers collect information about multiple systems in the network.
Email claiming Kaseya patch drops Cobalt Strike malware
The malicious email campaign is claiming to contain a patch for the Kaseya vulnerability but in fact, it is the infamous Cobalt Strike malware.
Gootloader exploits websites via SEO to spread ransomware, trojans
Researchers have warned that Gootloader campaigns generally target users in the US, Germany, France, and South Korea.
Hackers abusing Google App Engine to spread PDF malware
The Cobalt Strike advanced persistent threat (APT) group is using Google App Engine to spread PDF malware against financial firms. The IT…