home.social

#apt10 — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #apt10, aggregated by home.social.

  1. Stone Panda (APT 10) continues global espionage campaigns tied to China’s MSS.
    🎯 Targets: healthcare, defense, academia
    🛠️ Tools: Mimikatz, BloodHound, Impacket
    🌍 Active in the U.S., UK, Japan, India & more
    Espionage vs disruption — which do you see as their long-term mission?
    Follow @technadu for continuous APT tracking.

    #StonePanda #APT10 #CyberEspionage #ChinaAPT #ThreatActor #Cyble

  2. Stone Panda (APT 10) continues global espionage campaigns tied to China’s MSS.
    🎯 Targets: healthcare, defense, academia
    🛠️ Tools: Mimikatz, BloodHound, Impacket
    🌍 Active in the U.S., UK, Japan, India & more
    Espionage vs disruption — which do you see as their long-term mission?
    Follow @technadu for continuous APT tracking.

    #StonePanda #APT10 #CyberEspionage #ChinaAPT #ThreatActor #Cyble

  3. Stone Panda (APT 10) continues global espionage campaigns tied to China’s MSS.
    🎯 Targets: healthcare, defense, academia
    🛠️ Tools: Mimikatz, BloodHound, Impacket
    🌍 Active in the U.S., UK, Japan, India & more
    Espionage vs disruption — which do you see as their long-term mission?
    Follow @technadu for continuous APT tracking.

    #StonePanda #APT10 #CyberEspionage #ChinaAPT #ThreatActor #Cyble

  4. Stone Panda (APT 10) continues global espionage campaigns tied to China’s MSS.
    🎯 Targets: healthcare, defense, academia
    🛠️ Tools: Mimikatz, BloodHound, Impacket
    🌍 Active in the U.S., UK, Japan, India & more
    Espionage vs disruption — which do you see as their long-term mission?
    Follow @technadu for continuous APT tracking.

    #StonePanda #APT10 #CyberEspionage #ChinaAPT #ThreatActor #Cyble

  5. Stone Panda (APT 10) continues global espionage campaigns tied to China’s MSS.
    🎯 Targets: healthcare, defense, academia
    🛠️ Tools: Mimikatz, BloodHound, Impacket
    🌍 Active in the U.S., UK, Japan, India & more
    Espionage vs disruption — which do you see as their long-term mission?
    Follow @technadu for continuous APT tracking.

    #StonePanda #APT10 #CyberEspionage #ChinaAPT #ThreatActor #Cyble

  6. Cuckoo Threat Actor Arsenal

    This report delves into the technical aspects of the NOOPDOOR and NOOPLDR malwares employed by the APT10 threat actor in the Cuckoo Spear campaign. The analysis reveals how these tools operate and the potential risks they pose, helping cybersecurity professionals better understand and defend against this persistent adversary's sophisticated strategies.

    Pulse ID: 67043da051dfcecea2ff0462
    Pulse Link: otx.alienvault.com/pulse/67043
    Pulse Author: AlienVault
    Created: 2024-10-07 19:59:28

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #APT10 #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RAT #bot #AlienVault

  7. Happy Thursday everyone!

    Today's #readoftheday is brought to you by the Cybereason Security Services Team as they report their findings from a campaign they dubbed #CuckooSpear, and this is just part 1!

    They attributed this campaign to #APT10, found some new tools and capabilities that the group has, and discuss the luring techniques, and much more! They talk about the techniques and tactics that they observed, they tools and LOLBAS's that were abused.

    SPEAKING of techniques, APT10 used three different ways to gain persistence: scheduled tasks were created, they abused WMI Consumer Event (a method of subscribing to certain system events, then enabling an action of some sort), and creating Windows services.

    This report provides great insight to the adversaries techniques, and I look forward to the rest of the parts! Enjoy and Happy Hunting!

    CUCKOO SPEAR Part 1: Analyzing NOOPDOOR from an IR Perspective
    cybereason.com/blog/cuckoo-spe

    Intel 471 #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting Cyborg Security, Now Part of Intel 471

  8. Happy Thursday everyone!

    Today's #readoftheday is brought to you by the Cybereason Security Services Team as they report their findings from a campaign they dubbed #CuckooSpear, and this is just part 1!

    They attributed this campaign to #APT10, found some new tools and capabilities that the group has, and discuss the luring techniques, and much more! They talk about the techniques and tactics that they observed, they tools and LOLBAS's that were abused.

    SPEAKING of techniques, APT10 used three different ways to gain persistence: scheduled tasks were created, they abused WMI Consumer Event (a method of subscribing to certain system events, then enabling an action of some sort), and creating Windows services.

    This report provides great insight to the adversaries techniques, and I look forward to the rest of the parts! Enjoy and Happy Hunting!

    CUCKOO SPEAR Part 1: Analyzing NOOPDOOR from an IR Perspective
    cybereason.com/blog/cuckoo-spe

    Intel 471 #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting Cyborg Security, Now Part of Intel 471

  9. Happy Thursday everyone!

    Today's #readoftheday is brought to you by the Cybereason Security Services Team as they report their findings from a campaign they dubbed #CuckooSpear, and this is just part 1!

    They attributed this campaign to #APT10, found some new tools and capabilities that the group has, and discuss the luring techniques, and much more! They talk about the techniques and tactics that they observed, they tools and LOLBAS's that were abused.

    SPEAKING of techniques, APT10 used three different ways to gain persistence: scheduled tasks were created, they abused WMI Consumer Event (a method of subscribing to certain system events, then enabling an action of some sort), and creating Windows services.

    This report provides great insight to the adversaries techniques, and I look forward to the rest of the parts! Enjoy and Happy Hunting!

    CUCKOO SPEAR Part 1: Analyzing NOOPDOOR from an IR Perspective
    cybereason.com/blog/cuckoo-spe

    Intel 471 #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting Cyborg Security, Now Part of Intel 471

  10. Happy Thursday everyone!

    Today's #readoftheday is brought to you by the Cybereason Security Services Team as they report their findings from a campaign they dubbed #CuckooSpear, and this is just part 1!

    They attributed this campaign to #APT10, found some new tools and capabilities that the group has, and discuss the luring techniques, and much more! They talk about the techniques and tactics that they observed, they tools and LOLBAS's that were abused.

    SPEAKING of techniques, APT10 used three different ways to gain persistence: scheduled tasks were created, they abused WMI Consumer Event (a method of subscribing to certain system events, then enabling an action of some sort), and creating Windows services.

    This report provides great insight to the adversaries techniques, and I look forward to the rest of the parts! Enjoy and Happy Hunting!

    CUCKOO SPEAR Part 1: Analyzing NOOPDOOR from an IR Perspective
    cybereason.com/blog/cuckoo-spe

    Intel 471 #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting Cyborg Security, Now Part of Intel 471

  11. Die Firmen stammen aus unterschiedlichen Branchen, einige aus der Automobilindustrie. Hinter dem Angriff soll laut Symantec die Hackergruppe Cicada stecken.
    Japanische Firmen in 17 Ländern von Cyberattacke betroffen
  12. Side note: this website dubbed "Intrusion Truth: We hunt APTs" (intrusiontruth.wordpress.com) appears to be leaking a few elements (names, addresses) of Chinese officials from the #APT10 group before the initial indictment was made public.
    Is this parallel construction in action? 🤔 t.co/fPOFOPHTF9

  13. Two members of the #APT10 group indicted by the FBI, they were acting on behalf of the Tianjin State Security Bureau (天津市国家安全局), part of the Ministry of State Security (MSS) in China 🇨🇳 justice.gov/opa/pr/two-chinese #cyber #espionage #china