ABOUT
CVE DATABASE
CONTACT
VISIT SENTINELONE.COM
Operation Tainted Love Chinese APTs Target Telcos In New Attacks 4
labs
Advanced Persistent Threat

Operation Tainted Love | Chinese APTs Target Telcos in New Attacks
Aleksandar Milenkoski /

Cyber espionage actor deploys custom credential theft malware in new campaign targeting the telecoms sector.

Read More
WIP26 Espionage Threat Actors Abuse Cloud Infrastructure In Targeted Telco 4
labs
Adversary

WIP26 Espionage | Threat Actors Abuse Cloud Infrastructure in Targeted Telco Attacks
Aleksandar Milenkoski /

A new threat cluster has been targeting telecommunication providers in the Middle East and abusing Microsoft, Google and Dropbox cloud services.

Read More
MalVirt .NET Virtualization Thrives In New Malvertising Attacks 3
labs
Crimeware

MalVirt | .NET Virtualization Thrives in Malvertising Attacks
Aleksandar Milenkoski /

.NET malware loaders distributed through malvertising are using obfuscated virtualization for anti-analysis and evasion in an ongoing campaign.

Read More
DragonSpark Attacks Evade Detection With SparkRAT And Golang Source Code Interpretation 1
labs
Adversary

DragonSpark | Attacks Evade Detection with SparkRAT and Golang Source Code Interpretation
Aleksandar Milenkoski /

A cluster of attacks SentinelLabs tracks as DragonSpark uses a novel technique, Golang source code interpretation, to avoid detection while also deploying a little-known tool called SparkRAT.

Read More
11 Problems ChatGPT Can Solve For Reverse Engineers And Malware Analysts 1
labs
Security Research

11 Problems ChatGPT Can Solve For Reverse Engineers and Malware Analysts
Aleksandar Milenkoski /

ChatGPT has captured the imagination of many across infosec. Here's how it can superpower the efforts of reversers and malware analysts.

Read More
The Mystery Of Metador An Unattributed Threat Hiding In Telcos ISPs And Universities 3
labs
Advanced Persistent Threat

The Mystery of Metador | Unpicking Mafalda’s Anti-Analysis Techniques
Aleksandar Milenkoski /

Discover the anti-analysis techniques of the Mafalda implant, a unique, feature-rich backdoor used by the Metador threat actor.

Read More
SocGholish Diversifies And Expands Its Malware Staging Infrastructure To Counter Defenders 2
labs
Crimeware

SocGholish Diversifies and Expands Its Malware Staging Infrastructure to Counter Defenders
Aleksandar Milenkoski /

SocGholish operators continue to infect websites at a massive scale, and the threat actor is ramping up its infrastructure to match.

Read More
Intermittent Encryption For Speed And Evasion On The Rise A Trending Feature On The Ransomware Scene By Aleksandar Milenkoski Jim Walter 5
labs
Crimeware

Crimeware Trends | Ransomware Developers Turn to Intermittent Encryption to Evade Detection
Aleksandar Milenkoski /

Partially encrypting victims' files improves ransomware speed and aids evasion. First seen in LockFile, the technique is now being widely adopted.

Read More
1 2 3