Threat Hunter TeamSymantecPosted: 29 Aug, 20233 Min ReadThreat IntelligenceQakbot: Takedown Operation Dismantles Botnet Infrastructure Botnet was one of the most prolific malware distribution networks.Qakbot: Takedown Operation Dismantles Botnet Infrastructure
Threat Hunter TeamSymantecPosted: 28 Sep, 20234 Min ReadBudworm: APT Group Uses Updated Custom Tool in Attacks on Government and Telecoms OrgPreviously unseen version of SysUpdate used in August 2023 campaign.Budworm: APT Group Uses Updated Custom Tool in Attacks on Government and Telecoms Org
Threat Hunter TeamSymantecPosted: 13 Sep, 20237 Min Read3AM: New Ransomware Family Used As Fallback in Failed LockBit AttackAttackers resorted to new ransomware after deployment of LockBit was blocked on targeted network.3AM: New Ransomware Family Used As Fallback in Failed LockBit Attack
Threat Hunter TeamSymantecPosted: 12 Sep, 20237 Min ReadRedfly: Espionage Actors Continue to Target Critical InfrastructureNational grid in Asia compromised by attackers using ShadowPad Trojan.Redfly: Espionage Actors Continue to Target Critical Infrastructure
Threat Hunter TeamSymantecPosted: 29 Aug, 20233 Min ReadQakbot: Takedown Operation Dismantles Botnet Infrastructure Botnet was one of the most prolific malware distribution networks.Qakbot: Takedown Operation Dismantles Botnet Infrastructure
Threat Hunter TeamSymantecPosted: 22 Aug, 20236 Min ReadCarderbee: APT Group use Legit Software in Supply Chain Attack Targeting Orgs in Hong KongThis isn’t the first time Cobra DocGuard has been exploited by malicious actors.Carderbee: APT Group use Legit Software in Supply Chain Attack Targeting Orgs in Hong Kong