[zipdump -& Evasive ZIP Concatenation](/forums/diary/zipdump+Evasive+ZIP+Concatenation/31426/)==============================================================================================* * [](http://www.facebook.com/sharer.php?u=https%3A%2F%2Fisc.sans.edu%2Fforums%2Fdiary%2F31426 ‘Share on Facebook’)* [](http://twitter.com/share?text=zipdump%20%26%20Evasive%20ZIP%20Concatenation&url=https%3A%2F%2Fisc.sans.edu%2Fforums%2Fdiary%2F31426&via=SANS_ISC ‘Share on Twitter’) **Published** : 2024-11-09. **Last Updated** :…

This analysis examines phishing tactics used by threat actors, particularly focusing on the 0ktapus group. It outlines techniques for investigating…

This analysis explores two distinct methods used to infect systems with AsyncRAT through open directories. The first technique involves a…

Recent research reveals adversaries increasingly using the Havoc post-exploitation framework to bypass cybersecurity systems. Two campaigns utilizing this framework were…

An incident response investigation uncovered an attacker who exploited a SharePoint vulnerability (CVE-2024-38094) to gain initial access. The attacker remained…

G700 RAT, an advanced variant of Craxs RAT, targets Android devices and cryptocurrency applications. It employs sophisticated techniques like privilege…

An attacker exploited the Atlassian Confluence vulnerability CVE-2023-22527 to achieve remote code execution for cryptomining via the Titan Network. The…

A sophisticated malware campaign targeting cryptocurrency enthusiasts has been uncovered, utilizing multiple attack vectors including a malicious Python package on…

LastPass has alerted users about a social engineering campaign targeting customers through fraudulent 5-star reviews on the Chrome Web Store.…

This pulse contains IOCs related to Ngioweb Infrastructure. Additions are automatically added based on OTX sandboxed samples. Author: AlienVault Related…