A malicious campaign targeting residents of Middle East and North Africa has been discovered, active since September 2024. The attackers…

[Commonly Probed Webshell URLs](/forums/diary/Commonly+Probed+Webshell+URLs/31748/)===================================================================================* * [](http://www.facebook.com/sharer.php?u=https%3A%2F%2Fisc.sans.edu%2Fforums%2Fdiary%2F31748 ‘Share on Facebook’)* [](http://twitter.com/share?text=Commonly%20Probed%20Webshell%20URLs&url=https%3A%2F%2Fisc.sans.edu%2Fforums%2Fdiary%2F31748&via=SANS_ISC ‘Share on Twitter’) **Published** : 2025-03-09. **Last Updated** : 2025-03-09…

* [Cobalt Strike](https://www.redpacketsecurity.com/category/cobalt-strike/)Cobalt Strike Beacon Detected — 139-[.-]155-[.-]239-[.-]97:80==============================================================[March 9, 2025](https://www.redpacketsecurity.com/2025/03/) Cobalt Strike Beacon Detection Alerts > The Information provided at…

* [Cobalt Strike](https://www.redpacketsecurity.com/category/cobalt-strike/)Cobalt Strike Beacon Detected — 159-[.-]75-[.-]164-[.-]33:32222================================================================[March 9, 2025](https://www.redpacketsecurity.com/2025/03/) Cobalt Strike Beacon Detection Alerts > The Information provided at…

* [Cobalt Strike](https://www.redpacketsecurity.com/category/cobalt-strike/)Cobalt Strike Beacon Detected — 192-[.-]241-[.-]195-[.-]81:80==============================================================[March 9, 2025](https://www.redpacketsecurity.com/2025/03/) Cobalt Strike Beacon Detection Alerts > The Information provided at…

* [Cobalt Strike](https://www.redpacketsecurity.com/category/cobalt-strike/)Cobalt Strike Beacon Detected — 82-[.-]156-[.-]109-[.-]142:8443================================================================[March 9, 2025](https://www.redpacketsecurity.com/2025/03/) Cobalt Strike Beacon Detection Alerts > The Information provided at…

* [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[PLAY-] — Ransomware Victim: Nor Arc======================================[March 9, 2025](https://www.redpacketsecurity.com/2025/03/) Ransomware Group:…

* [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[INCRANSOM-] — Ransomware Victim: Greenwood Village South GVS===============================================================[March 9, 2025](https://www.redpacketsecurity.com/2025/03/) ![image](https://www.redpacketsecurity.com/wp-content/uploads/2024/09/image.png ‘[INCRANSOM] – Ransomware Victim: Greenwood Village…

* [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[INCRANSOM-] — Ransomware Victim: State Bar of Texas (www-[.-]texasbar-[.-]com)=================================================================================[March 9, 2025](https://www.redpacketsecurity.com/2025/03/) ![image](https://www.redpacketsecurity.com/wp-content/uploads/2024/09/image.png ‘[INCRANSOM] – Ransomware Victim: State…

* [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[PLAY-] — Ransomware Victim: Dectron======================================[March 9, 2025](https://www.redpacketsecurity.com/2025/03/) Ransomware Group: **PLAY**==========================### VICTIM…