23 May 2024

Chinese APTs increasingly using ORB networks to mask attack infrastructure

Chinese APTs increasingly using ORB networks to mask attack infrastructure
Mandiant reports that it is actively monitoring several ORB networks, with the most notable being SPACEHOP and FLORAHOX.

Latest Posts

Threat actors exploit vulnerable drivers to disable EDRs in cryptojacking attack

Threat actors exploit vulnerable drivers to disable EDRs in cryptojacking attack

Ghostengine deploys several modules to tamper with security tools, establish a backdoor, and ensure software updates are in place.
22 May 2024
Russia’s DoppelGänger campaign manipulates social media to undermine Western support for Ukraine

Russia’s DoppelGänger campaign manipulates social media to undermine Western support for Ukraine

The campaign uses typosquatted legitimate media outlets and independent news sites to publish disinformation articles.
22 May 2024
Hackers target orgs in Ukraine with SmokeLoader malware

Hackers target orgs in Ukraine with SmokeLoader malware

Since May 20, the threat actors have launched at least two distinct malware distribution campaigns.
22 May 2024
Incognito Market owner arrested in the US, faces life in prison

Incognito Market owner arrested in the US, faces life in prison

The marketplace facilitated the sale of more than $100 million worth of illegal narcotics.
22 May 2024