The Sandman APT’s Secret Link to the Keyplug Backdoor in China
Researchers have uncovered intriguing parallels between the elusive advanced persistent threat (APT) known as Sandman and a threat cluster based in China, notorious for deploying the KEYPLUG backdoor. The collaborative report from SentinelOne, PwC, and the Microsoft Threat Intelligence team reveals…
0 Comments6 Minutes
North Korea’s Lazarus Group has made $3 billion out of cryptocurrency hacks.
Since at least 2017, threat actors from the Democratic People’s Republic of Korea (DPRK) have been focusing on the cryptocurrency sector as a way to generate revenue and evade sanctions. In a report shared with The Hacker News, cybersecurity firm Recorded Future stated that “the…
0 Comments5 Minutes
Uncovering a Passive Approach to Extracting Private RSA Keys from SSH Tunnels
A recent study has shed light on the potential for passive network attackers to obtain Private RSA Keys from SSH Tunnels. This is achieved by capitalizing on the identification of inherent computational issues that surface during the connection establishment process. [FREE E-BOOK] The Definite…
0 Comments5 Minutes
NetSupport RAT targets both the business and government sectors
A remote access trojan, known as NetSupport RAT, is actively being used by threat actors to launch attacks on organizations across the education, government, and business services sectors. “The delivery mechanisms for the NetSupport RAT encompass fraudulent updates, drive-by downloads,…
0 Comments4 Minutes