Blog – Threat Intel Solutions

1(520) 261-1728

info@threatintel-solutions.net

Blog

Malware Steals Account Credentials

November 9, 2024

Tekno Phreak

* [Ecommerce Security](https://blog.sucuri.net/category/ecommerce-security)* [Magento Security](https://blog.sucuri.net/category/magento-security)* [Website Malware Infections](https://blog.sucuri.net/category/website-malware-infections)Malware Steals Account Credentials==================================![](https://secure.gravatar.com/avatar/890e38d7466587bdcb96bd18543e2b88?s=60&d=mm&r=g) [Matt Morrow](https://blog.sucuri.net/author/matt-morrow)* November 8, 2024 ![Malware Steals Account Credentials](https://blog.sucuri.net/wp-content/uploads/2024/11/Malware-Steals-Account-Credentials-820×385.png)…

Read More: Malware Steals Account Credentials
Unmasking Phishing: Strategies for identifying 0ktapus domains and beyond

November 7, 2024

Tekno Phreak

This analysis examines phishing tactics used by threat actors, particularly focusing on the 0ktapus group. It outlines techniques for investigating…

Read More: Unmasking Phishing: Strategies for identifying 0ktapus domains and beyond
Analysis of AsyncRATs Infection Tactics via Open Directories

November 7, 2024

Tekno Phreak

This analysis explores two distinct methods used to infect systems with AsyncRAT through open directories. The first technique involves a…

Read More: Analysis of AsyncRATs Infection Tactics via Open Directories
Wreaking havoc in cyberspace: threat actors experiment with pentest tools

November 7, 2024

Tekno Phreak

Recent research reveals adversaries increasingly using the Havoc post-exploitation framework to bypass cybersecurity systems. Two campaigns utilizing this framework were…

Read More: Wreaking havoc in cyberspace: threat actors experiment with pentest tools
Investigating a SharePoint Compromise: IR Tales from the Field

November 5, 2024

Tekno Phreak

An incident response investigation uncovered an attacker who exploited a SharePoint vulnerability (CVE-2024-38094) to gain initial access. The attacker remained…

Read More: Investigating a SharePoint Compromise: IR Tales from the Field
G700: The Next Generation of Craxs RAT

November 4, 2024

Tekno Phreak

G700 RAT, an advanced variant of Craxs RAT, targets Android devices and cryptocurrency applications. It employs sophisticated techniques like privilege…

Read More: G700: The Next Generation of Craxs RAT
Attacker Abuses Victim Resources to Reap Rewards from Titan Network

November 4, 2024

Tekno Phreak

An attacker exploited the Atlassian Confluence vulnerability CVE-2023-22527 to achieve remote code execution for cryptomining via the Titan Network. The…

Read More: Attacker Abuses Victim Resources to Reap Rewards from Titan Network
Cryptocurrency Enthusiasts Targeted in MultiVector Supply Chain Attack

November 4, 2024

Tekno Phreak

A sophisticated malware campaign targeting cryptocurrency enthusiasts has been uncovered, utilizing multiple attack vectors including a malicious Python package on…

Read More: Cryptocurrency Enthusiasts Targeted in MultiVector Supply Chain Attack
LastPass Warns of Hackers Misusing Reviews for Fake Support Numbers

November 4, 2024

Tekno Phreak

LastPass has alerted users about a social engineering campaign targeting customers through fraudulent 5-star reviews on the Chrome Web Store.…

Read More: LastPass Warns of Hackers Misusing Reviews for Fake Support Numbers
Ngioweb Proxy

November 4, 2024

Tekno Phreak

This pulse contains IOCs related to Ngioweb Infrastructure. Additions are automatically added based on OTX sandboxed samples. Author: AlienVault Related…

Read More: Ngioweb Proxy