ABOUT

VISIT SENTINELONE.COM

Advanced Persistent Threat

Sandman APT A Mystery Group Targeting Telcos With A LuaJIT Toolkit 4

Advanced Persistent Threat

Sandman APT | A Mystery Group Targeting Telcos with a LuaJIT Toolkit

Aleksandar Milenkoski / September 21, 2023

Sophisticated threat actor deploys high-end malware utilizing the LuaJIT platform to backdoor telcos in Europe, Middle East and South Asia.

CapraTube Transparent Tribes CapraRAT Mimics YouTube To Hijack Android Phones 3

Advanced Persistent Threat

CapraTube | Transparent Tribe’s CapraRAT Mimics YouTube to Hijack Android Phones

Alex Delamotte / September 18, 2023

Pakistan-aligned threat actor weaponizes fake YouTube apps on the Android platform to deliver mobile remote access trojan spyware.

JumpCloud Intrusion Attacker Infrastructure Links Compromise To North Korean APT Activity 5

Advanced Persistent Threat

JumpCloud Intrusion | Attacker Infrastructure Links Compromise to North Korean APT Activity

Tom Hegel / July 20, 2023

North Korean state sponsored APT is behind a new supply chain attack on zero-trust directory platform JumpCloud.

Kimsuky Strikes Again New Social Engineering Campaign Aims To Steal Credentials And Gather Strategic Intelligence 5

Advanced Persistent Threat

Kimsuky Strikes Again | New Social Engineering Campaign Aims to Steal Credentials and Gather Strategic Intelligence

Aleksandar Milenkoski / June 6, 2023

Threat actor targets experts in North Korean affairs with spoofed URLs and weaponized Office documents to steal Google and other credentials.

Kimsuky Evolves Reconnaissance Capabilities In New Global Campaign 9

Advanced Persistent Threat

Kimsuky Evolves Reconnaissance Capabilities in New Global Campaign

Tom Hegel / May 4, 2023

DPRK-linked threat actor deploys previously unseen reconnaissance tool 'ReconShark' in wave of ongoing attacks.

Transparent Tribe 6

Advanced Persistent Threat

Transparent Tribe (APT36) | Pakistan-Aligned Threat Actor Expands Interest in Indian Education Sector

Aleksandar Milenkoski / April 13, 2023

SentinelLABS has been tracking a cluster of malicious documents that stage the Crimson RAT malware distributed by APT36 (Transparent Tribe).

Operation Tainted Love Chinese APTs Target Telcos In New Attacks 4

Advanced Persistent Threat

Operation Tainted Love | Chinese APTs Target Telcos in New Attacks

Aleksandar Milenkoski / March 23, 2023

Cyber espionage actor deploys custom credential theft malware in new campaign targeting the telecoms sector.

Winter Vivern Uncovering A Wave Of Global Espionage 6

Advanced Persistent Threat

Winter Vivern | Uncovering a Wave of Global Espionage

Tom Hegel / March 16, 2023

SentinelLABS uncover a previously unknown set of espionage campaigns conducted by Winter Vivern advanced persistent threat (APT) group.

The Mystery Of Metador An Unattributed Threat Hiding In Telcos ISPs And Universities 3

Advanced Persistent Threat

The Mystery of Metador | Unpicking Mafalda’s Anti-Analysis Techniques

Aleksandar Milenkoski / December 1, 2022

Discover the anti-analysis techniques of the Mafalda implant, a unique, feature-rich backdoor used by the Metador threat actor.

WIP19 Espionage New Chinese APT Targets IT Service Providers And Telcos With Signed Malware By Joey Chen And Amitai Ben Shushan Ehrlich 12

Advanced Persistent Threat

WIP19 Espionage | New Chinese APT Targets IT Service Providers and Telcos With Signed Malware

Joey Chen / October 12, 2022

Precision targeting of critical infrastructure industries indicates espionage-related activity by an unattributed Chinese-speaking threat group.

1 2 3 4

Next

Search

Search ...

Sign Up

Get notified when we post new content.

Thanks! Keep an eye out for new content!

Recent Posts

Follow the Smoke | China-nexus Threat Actors Hammer At the Doors of Top Tier Targets
June 9, 2025
FreeDrain Unmasked | Uncovering an Industrial-Scale Crypto Theft Network
May 8, 2025
Top Tier Target | What It Takes to Defend a Cybersecurity Company from Today’s Adversaries
April 28, 2025

Labs Categories

Crimeware
Security Research
Advanced Persistent Threat
Adversary
LABScon
Security & Intelligence

SentinelLabs

In the era of interconnectivity, when markets, geographies, and jurisdictions merge in the melting pot of the digital domain, the perils of the threat ecosystem become unparalleled. Crimeware families achieve an unparalleled level of technical sophistication, APT groups are competing in fully-fledged cyber warfare, while once decentralized and scattered threat actors are forming adamant alliances of operating as elite corporate espionage teams.

Recent Posts

Follow the Smoke | China-nexus Threat Actors Hammer At the Doors of Top Tier Targets
June 9, 2025
FreeDrain Unmasked | Uncovering an Industrial-Scale Crypto Theft Network
May 8, 2025
Top Tier Target | What It Takes to Defend a Cybersecurity Company from Today’s Adversaries
April 28, 2025

Sign Up

Get notified when we post new content.

Thanks! Keep an eye out for new content!

Twitter
LinkedIn

©2025 SentinelOne, All Rights Reserved.