Threat Intel Solutions

A novel version of the RomCom malware family called SnipBot has been discovered, revealing post-infection activity from attackers on victim…

A novel version of the RomCom malware family called SnipBot has been discovered, revealing post-infection activity from attackers on victim…

UNC2970, a suspected North Korean cyber espionage group, targeted critical infrastructure sectors using job-themed phishing lures. The group employed a…

This analysis explores the use of Binary Managed Object Files (BMOFs) in distributing XMRig CoinMiner. BMOFs, compiled versions of Managed…

This comprehensive analysis details a sophisticated cyber campaign targeting over 50,000 Windows servers worldwide, primarily in the healthcare, telecommunications, media,…

This comprehensive analysis details a sophisticated cyber campaign targeting over 50,000 Windows servers worldwide, primarily in the healthcare, telecommunications, media,…

* [Cobalt Strike](https://www.redpacketsecurity.com/category/cobalt-strike/)Cobalt Strike Beacon Detected — 124-[.-]221-[.-]112-[.-]96:80==============================================================[September 15, 2024](https://www.redpacketsecurity.com/2024/09/) Cobalt Strike Beacon Detection Alerts > The Information provided at…

* [Cobalt Strike](https://www.redpacketsecurity.com/category/cobalt-strike/)Cobalt Strike Beacon Detected — 49-[.-]235-[.-]122-[.-]75:80=============================================================[September 15, 2024](https://www.redpacketsecurity.com/2024/09/) Cobalt Strike Beacon Detection Alerts > The Information provided at…

Port of Seattle confirmed on Friday that the Rhysida ransomware group was behind the cyberattack that hit the agency in…

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.————————————————————————————————————————————–[Mythical Beasts…