Threat Hunter TeamSymantecPosted: 9 Sep, 20214 Min ReadThreat IntelligenceGrayfly: Chinese Threat Actor Uses Newly-discovered Sidewalk MalwareRecent campaigns involved exploits against Exchange and MySQL servers. Group has heavy focus on telecoms sector.Grayfly: Chinese Threat Actor Uses Newly-discovered Sidewalk Malware
Kevin WatkinsSecurity ResearcherPosted: 23 Sep, 20213 Min ReadPegasus Spyware Takes Flight AgainSymantec solutions help detect, filter, and block the threat.Pegasus Spyware Takes Flight Again
Threat Hunter TeamSymantecPosted: 9 Sep, 20214 Min ReadGrayfly: Chinese Threat Actor Uses Newly-discovered Sidewalk MalwareRecent campaigns involved exploits against Exchange and MySQL servers. Group has heavy focus on telecoms sector.Grayfly: Chinese Threat Actor Uses Newly-discovered Sidewalk Malware
Threat Hunter TeamSymantecPosted: 20 Aug, 20214 Min ReadLockFile: Ransomware Uses PetitPotam Exploit to Compromise Windows Domain ControllersPreviously unseen ransomware hit at least 10 organizations in ongoing campaign.LockFile: Ransomware Uses PetitPotam Exploit to Compromise Windows Domain Controllers
Threat Hunter TeamSymantecPosted: 12 Aug, 20214 Min ReadAffiliates Unlocked: Gangs Switch Between Different Ransomware Families The demise of Sodinokibi has led to a surge in LockBit activity, while there’s evidence affiliates are using multiple ransomware families to achieve their goals.Affiliates Unlocked: Gangs Switch Between Different Ransomware Families
Threat Hunter TeamSymantecPosted: 5 Aug, 20215 Min ReadCritical Infrastructure Organizations in South East Asia Targeted in Espionage CampaignAttackers made extensive use of living-off-the-land techniques in campaign that lasted several months.Critical Infrastructure Organizations in South East Asia Targeted in Espionage Campaign
