MQsTTang Backdoor Detection: New Custom Malware by Mustang Panda APT Actively Used in the Latest Campaign Against Government Entities New day, new malicious threat challenging...
Tag: socprime
Detect PlugX Trojan Masquerading as a Legitimate Windows Debugger Tool to Fly Under the Radar
Detect PlugX Trojan Masquerading as a Legitimate Windows Debugger Tool to Fly Under the Radar Old dog, new tricks! Security researchers revealed PlugX remote access Trojan...
CredPump, HoaxPen, and HoaxApe Backdoor Detection: UAC-0056 Hackers Launch Disruptive Attacks Against Ukrainian Government Websites Planned Over One Year Earlier
CredPump, HoaxPen, and HoaxApe Backdoor Detection: UAC-0056 Hackers Launch Disruptive Attacks Against Ukrainian Government Websites Planned Over One Year Earlier Approaching the date of one-year anniversary...
Driving Business Growth in Turbulent Times from the Perspective of SOC Prime’s CEO: Part II
Driving Business Growth in Turbulent Times from the Perspective of SOC Prime’s CEO: Part II How Fusing Sigma & MITRE ATT&CK® Empowers Collective Cyber Defense to...
Driving Business Growth in Turbulent Times from the Perspective of SOC Prime’s Director of People and Culture: Part I
Driving Business Growth in Turbulent Times from the Perspective of SOC Prime’s Director of People and Culture: Part I SOC Prime’s International Team: Bridging the Gap...
UAC-0114 Group aka Winter Vivern Attack Detection: Hackers Launch Phishing Campaigns Targeting Government Entities of Ukraine and Poland
UAC-0114 Group aka Winter Vivern Attack Detection: Hackers Launch Phishing Campaigns Targeting Government Entities of Ukraine and Poland Since the outbreak of the global cyber war,...
Remcos Malware Detection: UAC-0050 Group Targets Ukrainian Government Entities in Phishing Attacks Using Remote Access Software
Remcos Malware Detection: UAC-0050 Group Targets Ukrainian Government Entities in Phishing Attacks Using Remote Access Software Remcos Trojan (Remote Control and Surveillance) is frequently delivered by...
Driving Business Growth in Turbulent Times from the Perspective of SOC Prime’s Director of People and Culture: Part II
Driving Business Growth in Turbulent Times from the Perspective of SOC Prime’s Director of People and Culture: Part II Building Team Resilience and Fortitude While Facing...
Remote Utilities Exploitation: New Phishing Campaign by the UAC-0096 Group Targeting Ukrainian Organizations
Remote Utilities Exploitation: New Phishing Campaign by the UAC-0096 Group Targeting Ukrainian Organizations Hot on the heels of the massive email distribution in the recent malicious...
SOC Prime Threat Bounty — January 2023 Results
SOC Prime Threat Bounty — January 2023 Results Threat Bounty Publications The first month of 2023 has brought invaluable contributions from our Threat Bounty members to...
Driving Business Growth in Turbulent Times from the Perspective of SOC Prime’s CEO: Part I
Driving Business Growth in Turbulent Times from the Perspective of SOC Prime’s CEO: Part I Agents of S.H.I.E.L.D.: How SOC Prime Helps Ukraine Thwart Aggressor’s Cyber...
ProxyShellMiner Detection: Novel Crypto-Mining Attacks Abusing CVE-2021-34473 and CVE-2021-34523 ProxyShell Vulnerabilities in Windows Exchange Servers
ProxyShellMiner Detection: Novel Crypto-Mining Attacks Abusing CVE-2021-34473 and CVE-2021-34523 ProxyShell Vulnerabilities in Windows Exchange Servers Stay alert! Threat actors once again set eyes on Microsoft Windows...