Darkside Ransomware Threat Intelligence Advisory
CloudSEK threat intelligence advisory on Darkside ransomware, the operators of which launched a more sophisticated variant of the ransomware, Darkside 2.0.
Archives: Threat Intelligence
FluBot Malware Threat Intel Advisory
CloudSEK threat intelligence advisory on FluBot Android malware, that impersonates mobile banking applications to draw fake webview on targeted applications.
Microsoft Exchange ProxyLogon Vulnerability Threat Intel Advisory
CloudSEK threat intelligence advisory on Exchange ProxyLogon flaws CVE-2021-26855/ 26857/ 26858/ 27065 exploited by ransomware gangs and nation-state actors.
VMware vCenter RCE Bug Threat Intel Advisory
CloudSEK threat intelligence advisory on VMware vCenter RCE Bug, allows unauthorized actors to execute arbitrary code on a vCenter Server instance.
Gootloader Malware Threat Intel Advisory
CloudSEK threat intelligence advisory on Gootloader malware, Javascript-based infection framework, uses new techniques to deliver payload.
Kobalos Malware Threat Intel Advisory
CloudSEK threat intelligence advisory on Kobalos malware with a small yet complex codebase, targeting multiple operating systems.
CVE-2021-1732 Windows 0-Day Threat Intel Advisory
CloudSEK threat intelligence advisory on CVE-2021-1732 zero-day vulnerability that targets Windows infrastructure.
Osiris Banking Trojan Threat Intelligence Advisory
CloudSEK threat intelligence advisory on Osiris banking trojan, the latest variant of Kronos malware, targets banking credentials of victims.
Latest North Korean Social Engineering Campaign Threat Intel Advisory
CloudSEK threat intelligence advisory on an ongoing North Korean campaign targeting security researchers to spread weaponized files.
MS Exchange RCE Vulnerability Threat Intelligence Advisory
CloudSEK threat intelligence advisory on MS Exchange RCE vulnerability, dubbed CVE-2020-16875, that allows attackers highest user privileges.