ABOUT
CVE DATABASE
CONTACT
VISIT SENTINELONE.COM
Advanced Persistent Threat

Operation Digital Eye | Chinese APT Compromises Critical Digital Infrastructure via Visual Studio Code Tunnels

Threat actors abused Visual Studio Code and Microsoft Azure infrastructure to target large business-to-business IT service providers in Southern Europe.

Read More
Pkfail Ftr
LABScon

LABScon24 Replay | PKfail: Supply-Chain Failures in Secure Boot Key Management
LABScon /

Binarly’s Alex Matrosov and Fabio Pagani present PKfail, a firmware supply-chain security issue affecting major device vendors and hundreds of device models.

Read More
Cristina Ftr
LABScon

LABScon24 Replay | A 30-Year Journey from Compilation Student to Decompilation Pioneer
LABScon /

Dr. Cristina Cifuentes, known as the Mother of Decompilation, reflects on three decades of innovation in reverse engineering in her LABScon 2024 keynote.

Read More
Cybervolk V2 Ftr
Crimeware

CyberVolk | A Deep Dive into the Hacktivists, Tools and Ransomware Fueling Pro-Russian Cyber Attacks
Jim Walter /

A loose collective of mostly low-skilled actors, CyberVolk absorbs and adapts a wide array of destructive malware for use against political targets.

Read More
DPRK Front V3 Ftr
Adversary

DPRK IT Workers | A Network of Active Front Companies and Their Links to China
Tom Hegel & Dakota Cary /

SentinelLabs has identified multiple deceptive websites linked to businesses in China fronting for North Korea's fake IT workers scheme.

Read More
BNThief Feature
Advanced Persistent Threat

BlueNoroff Hidden Risk | Threat Actor Targets Macs with Fake Crypto News and Novel Persistence
Raffaele Sabato, Phil Stokes & Tom Hegel /

SentinelLabs has observed a suspected DPRK threat actor targeting Crypto-related businesses with novel multi-stage malware.

Read More
Cloud Workshop Blue Ftr
Security Research

Cloud Malware | A Threat Hunter’s Guide to Analysis, Techniques and Delivery
Alex Delamotte /

Learn about cloud threats, how to hunt for them and how to analyze them in this post based on Alex Delamotte's recent LABScon workshop.

Read More
China Influence Feature
Security & Intelligence

China’s Influence Ops | Twisting Tales of Volt Typhoon at Home and Abroad
Dakota Cary /

China's CVERC attempts to attribute Volt Typhoon activities to the U.S., but the fact-free claims reveal much about the PRC's real agenda.

Read More
Kryptina Desert Ftr
Crimeware

Kryptina RaaS | From Unsellable Cast-Off to Enterprise Ransomware
Jim Walter /

Kryptina's adoption by Mallox affiliates complicates malware tracking as ransomware operators blend different codebases into new variants.

Read More
Zuzana Labscon23
LABScon

LABScon23 Replay | They Spilled Oil in My Health-Boosting Smoothie
LABScon /

Zuzana Hromcová explores how Iran-aligned APT OilRig targets healthcare and local governments with a stream of updated and newly developed tools.

Read More
Exploring VT Bus Ftr
Security Research

Exploring the VirusTotal Dataset | An Analyst’s Guide to Effective Threat Research
Aleksandar Milenkoski & Jose Luis Sánchez Martínez (VirusTotal) /

We teamed up with VirusTotal to take a deep dive into the platform's extensive query capabilities through both the web and API interfaces.

Read More
1 2 3 21