ABOUT
CVE DATABASE
CONTACT
VISIT SENTINELONE.COM

Adversary

DPRK Front V3 Ftr
Adversary

DPRK IT Workers | A Network of Active Front Companies and Their Links to China
Tom Hegel & Dakota Cary /

SentinelLabs has identified multiple deceptive websites linked to businesses in China fronting for North Korea's fake IT workers scheme.

Read More
FIN7 AvNeuralizer Ftr
Adversary

FIN7 Reboot | Cybercrime Gang Enhances Ops with New EDR Bypasses and Automated Attacks
Antonio Cocomazzi /

This research explores how FIN7 has adopted automated attack methods and developed defense evasion techniques previously unseen in the wild.

Read More
Capra Remix V2 Ftr
Adversary

CapraTube Remix | Transparent Tribe’s Android Spyware Targeting Gamers, Weapons Enthusiasts
Alex Delamotte /

SentinelLabs has identified four new CapraRAT APKs associated with suspected Pakistan state-aligned actor Transparent Tribe.

Read More
Acid Pour Bg
Adversary

AcidPour | New Embedded Wiper Variant of AcidRain Appears in Ukraine
Juan Andrés Guerrero-Saade & Tom Hegel /

SentinelLabs has discovered a novel malware variant of AcidRain that could be targeting telecoms networks in Ukraine.

Read More
Doppelganger Russia Aligned Influence Operation Targets Germany 2
Adversary

Doppelgänger | Russia-Aligned Influence Operation Targets Germany 
Aleksandar Milenkoski /

Doppelgänger, a sophisticated Russia-aligned operation, targets German public opinion with disinformation ahead of elections.

Read More
Gaza Cybergang Unified Front Targeting Hamas Opposition 13
Adversary

Gaza Cybergang | Unified Front Targeting Hamas Opposition
Aleksandar Milenkoski /

Cluster of threat groups continues on trajectory to consolidate with shared victims, TTPs and evolving malware.

Read More
Cyber Soft Power Chinas Continental Takeover 14
Adversary

Cyber Soft Power | China’s Continental Takeover
Tom Hegel /

China-aligned threat actors are increasingly involved in strategic intrusions in Africa, aiming to extend the PRC's influence across the continent.

Read More
Chinese Entanglement DLL Hijacking In The Asian Gambling Sector By Aleksandar Milenkoski And Tom Hegel 5
Adversary

Chinese Entanglement | DLL Hijacking in the Asian Gambling Sector
Aleksandar Milenkoski /

Threat actors abuse Adobe Creative Cloud, Edge, and other executables vulnerable to DLL hijacking in campaign targeting the Southeast Asian gambling sector.

Read More
Comrades In Arms North Korea Compromises Sanctioned Russian Missile Engineering Company 1
Adversary

Comrades in Arms? | North Korea Compromises Sanctioned Russian Missile Engineering Company
Tom Hegel /

North Korean threat actors attempt to further missile program by compromising sanctioned Russian defense company with OpenCarrot backdoor.

Read More
Operation Magalenha Long Running Campaign Pursues Portuguese Credentials And PII 3
Adversary

Operation Magalenha | Long-Running Campaign Pursues Portuguese Credentials and PII
Aleksandar Milenkoski /

A Brazilian threat actor is targeting users of over 30 Portuguese financial institutions with custom backdoors.

Read More
1 2 3 4