#apt10 — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #apt10, aggregated by home.social.
-
Stone Panda (APT 10) continues global espionage campaigns tied to China’s MSS.
🎯 Targets: healthcare, defense, academia
🛠️ Tools: Mimikatz, BloodHound, Impacket
🌍 Active in the U.S., UK, Japan, India & more
Espionage vs disruption — which do you see as their long-term mission?
Follow @technadu for continuous APT tracking.#StonePanda #APT10 #CyberEspionage #ChinaAPT #ThreatActor #Cyble
-
Stone Panda (APT 10) continues global espionage campaigns tied to China’s MSS.
🎯 Targets: healthcare, defense, academia
🛠️ Tools: Mimikatz, BloodHound, Impacket
🌍 Active in the U.S., UK, Japan, India & more
Espionage vs disruption — which do you see as their long-term mission?
Follow @technadu for continuous APT tracking.#StonePanda #APT10 #CyberEspionage #ChinaAPT #ThreatActor #Cyble
-
Stone Panda (APT 10) continues global espionage campaigns tied to China’s MSS.
🎯 Targets: healthcare, defense, academia
🛠️ Tools: Mimikatz, BloodHound, Impacket
🌍 Active in the U.S., UK, Japan, India & more
Espionage vs disruption — which do you see as their long-term mission?
Follow @technadu for continuous APT tracking.#StonePanda #APT10 #CyberEspionage #ChinaAPT #ThreatActor #Cyble
-
Stone Panda (APT 10) continues global espionage campaigns tied to China’s MSS.
🎯 Targets: healthcare, defense, academia
🛠️ Tools: Mimikatz, BloodHound, Impacket
🌍 Active in the U.S., UK, Japan, India & more
Espionage vs disruption — which do you see as their long-term mission?
Follow @technadu for continuous APT tracking.#StonePanda #APT10 #CyberEspionage #ChinaAPT #ThreatActor #Cyble
-
Stone Panda (APT 10) continues global espionage campaigns tied to China’s MSS.
🎯 Targets: healthcare, defense, academia
🛠️ Tools: Mimikatz, BloodHound, Impacket
🌍 Active in the U.S., UK, Japan, India & more
Espionage vs disruption — which do you see as their long-term mission?
Follow @technadu for continuous APT tracking.#StonePanda #APT10 #CyberEspionage #ChinaAPT #ThreatActor #Cyble
-
Earth Kasha Upgraded Their Arsenal With New Tactics To Attack Organizations https://gbhackers.com/earth-kasha-tactics-upgrade/ #CyberSecurityNews #MalwareTactics #cybersecurity #CyberAttack #Malware #APT10
-
Earth Kasha Upgraded Their Arsenal With New Tactics To Attack Organizations https://gbhackers.com/earth-kasha-tactics-upgrade/ #CyberSecurityNews #MalwareTactics #cybersecurity #CyberAttack #Malware #APT10
-
Earth Kasha Upgraded Their Arsenal With New Tactics To Attack Organizations https://gbhackers.com/earth-kasha-tactics-upgrade/ #CyberSecurityNews #MalwareTactics #cybersecurity #CyberAttack #Malware #APT10
-
Cuckoo Threat Actor Arsenal
This report delves into the technical aspects of the NOOPDOOR and NOOPLDR malwares employed by the APT10 threat actor in the Cuckoo Spear campaign. The analysis reveals how these tools operate and the potential risks they pose, helping cybersecurity professionals better understand and defend against this persistent adversary's sophisticated strategies.
Pulse ID: 67043da051dfcecea2ff0462
Pulse Link: https://otx.alienvault.com/pulse/67043da051dfcecea2ff0462
Pulse Author: AlienVault
Created: 2024-10-07 19:59:28Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#APT10 #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RAT #bot #AlienVault
-
Happy Thursday everyone!
Today's #readoftheday is brought to you by the Cybereason Security Services Team as they report their findings from a campaign they dubbed #CuckooSpear, and this is just part 1!
They attributed this campaign to #APT10, found some new tools and capabilities that the group has, and discuss the luring techniques, and much more! They talk about the techniques and tactics that they observed, they tools and LOLBAS's that were abused.
SPEAKING of techniques, APT10 used three different ways to gain persistence: scheduled tasks were created, they abused WMI Consumer Event (a method of subscribing to certain system events, then enabling an action of some sort), and creating Windows services.
This report provides great insight to the adversaries techniques, and I look forward to the rest of the parts! Enjoy and Happy Hunting!
CUCKOO SPEAR Part 1: Analyzing NOOPDOOR from an IR Perspective
https://www.cybereason.com/blog/cuckoo-spear-analyzing-noopdoorIntel 471 #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting Cyborg Security, Now Part of Intel 471
-
Happy Thursday everyone!
Today's #readoftheday is brought to you by the Cybereason Security Services Team as they report their findings from a campaign they dubbed #CuckooSpear, and this is just part 1!
They attributed this campaign to #APT10, found some new tools and capabilities that the group has, and discuss the luring techniques, and much more! They talk about the techniques and tactics that they observed, they tools and LOLBAS's that were abused.
SPEAKING of techniques, APT10 used three different ways to gain persistence: scheduled tasks were created, they abused WMI Consumer Event (a method of subscribing to certain system events, then enabling an action of some sort), and creating Windows services.
This report provides great insight to the adversaries techniques, and I look forward to the rest of the parts! Enjoy and Happy Hunting!
CUCKOO SPEAR Part 1: Analyzing NOOPDOOR from an IR Perspective
https://www.cybereason.com/blog/cuckoo-spear-analyzing-noopdoorIntel 471 #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting Cyborg Security, Now Part of Intel 471
-
Happy Thursday everyone!
Today's #readoftheday is brought to you by the Cybereason Security Services Team as they report their findings from a campaign they dubbed #CuckooSpear, and this is just part 1!
They attributed this campaign to #APT10, found some new tools and capabilities that the group has, and discuss the luring techniques, and much more! They talk about the techniques and tactics that they observed, they tools and LOLBAS's that were abused.
SPEAKING of techniques, APT10 used three different ways to gain persistence: scheduled tasks were created, they abused WMI Consumer Event (a method of subscribing to certain system events, then enabling an action of some sort), and creating Windows services.
This report provides great insight to the adversaries techniques, and I look forward to the rest of the parts! Enjoy and Happy Hunting!
CUCKOO SPEAR Part 1: Analyzing NOOPDOOR from an IR Perspective
https://www.cybereason.com/blog/cuckoo-spear-analyzing-noopdoorIntel 471 #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting Cyborg Security, Now Part of Intel 471
-
Happy Thursday everyone!
Today's #readoftheday is brought to you by the Cybereason Security Services Team as they report their findings from a campaign they dubbed #CuckooSpear, and this is just part 1!
They attributed this campaign to #APT10, found some new tools and capabilities that the group has, and discuss the luring techniques, and much more! They talk about the techniques and tactics that they observed, they tools and LOLBAS's that were abused.
SPEAKING of techniques, APT10 used three different ways to gain persistence: scheduled tasks were created, they abused WMI Consumer Event (a method of subscribing to certain system events, then enabling an action of some sort), and creating Windows services.
This report provides great insight to the adversaries techniques, and I look forward to the rest of the parts! Enjoy and Happy Hunting!
CUCKOO SPEAR Part 1: Analyzing NOOPDOOR from an IR Perspective
https://www.cybereason.com/blog/cuckoo-spear-analyzing-noopdoorIntel 471 #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting Cyborg Security, Now Part of Intel 471
-
Linux backdoor is a Windows malware knockoff: https://arstechnica.com/security/2023/09/never-before-seen-linux-backdoor-is-a-windows-malware-knockoff/
-
Linux backdoor is a Windows malware knockoff: https://arstechnica.com/security/2023/09/never-before-seen-linux-backdoor-is-a-windows-malware-knockoff/
-
Linux backdoor is a Windows malware knockoff: https://arstechnica.com/security/2023/09/never-before-seen-linux-backdoor-is-a-windows-malware-knockoff/
-
Linux backdoor is a Windows malware knockoff: https://arstechnica.com/security/2023/09/never-before-seen-linux-backdoor-is-a-windows-malware-knockoff/
-
Linux backdoor is a Windows malware knockoff: https://arstechnica.com/security/2023/09/never-before-seen-linux-backdoor-is-a-windows-malware-knockoff/
-
Evolution of LODEINFO #backdoor shellcode
#apts #apt10 #threatintel #dfir
#infosec
https://securelist.com/apt10-tracking-down-lodeinfo-2022-part-ii/107745/ -
Evolution of LODEINFO #backdoor shellcode
#apts #apt10 #threatintel #dfir
#infosec
https://securelist.com/apt10-tracking-down-lodeinfo-2022-part-ii/107745/ -
Evolution of LODEINFO #backdoor shellcode
#apts #apt10 #threatintel #dfir
#infosec
https://securelist.com/apt10-tracking-down-lodeinfo-2022-part-ii/107745/ -
Die Firmen stammen aus unterschiedlichen Branchen, einige aus der Automobilindustrie. Hinter dem Angriff soll laut Symantec die Hackergruppe Cicada stecken.
Japanische Firmen in 17 Ländern von Cyberattacke betroffen -
Side note: this website dubbed "Intrusion Truth: We hunt APTs" (http://intrusiontruth.wordpress.com) appears to be leaking a few elements (names, addresses) of Chinese officials from the #APT10 group before the initial indictment was made public.
Is this parallel construction in action? 🤔 https://t.co/fPOFOPHTF9 -
Two members of the #APT10 group indicted by the FBI, they were acting on behalf of the Tianjin State Security Bureau (天津市国家安全局), part of the Ministry of State Security (MSS) in China 🇨🇳 https://www.justice.gov/opa/pr/two-chinese-hackers-associated-ministry-state-security-charged-global-computer-intrusion #cyber #espionage #china