#apt41 — Public Fediverse posts on home.social

Daniel Kuhl ✌🏻☮️☕️ @[email protected] · 2026-03-13 · 12:50 UTC

#CheckPoint Research has profiled #SilverDragon, a Chinese-aligned group linked to #APT41 that targeted government and enterprise networks across Southeast Asia and Europe. Recent operations used the #GearDoor #backdoor with SSHcmd and SilverScreen, enabling remote access, covert screen capture, and stealthy control after #phishing and server exploitation.

https://research.checkpoint.com/2026/silver-dragon-targets-organizations-in-southeast-asia-and-europe/

#checkpoint #silverdragon #apt41 #geardoor #backdoor #phishing

Rod2ik 🇪🇺 🇨🇵 🇪🇸 🇨🇱 🇺🇦 🇨🇦 🇬🇱☮🕊️ @[email protected] · 2026-03-05 · 22:12 UTC

#SilverDragon est 1 opération d’ #espionnage informatique suivie par plusieurs équipes de threat intelligence.Les chercheurs y voient une attribution à #APT41 avec 1 outillage soigné, des phases discrètes de reconnaissance et 1 intérêt marqué pour les réseaux gouvernementaux

https://tr92.fr/quand-le-cyber-espionnage-detat-avec-windows-et-google-drive-espionne-les-gouvernements/

#silverdragon #espionnage #apt41

Habr @[email protected] · 2025-11-01 · 13:52 UTC

Злоумышленники перенимают опыт коллег: что общего между SilverFox и APT41. Разбор атаки

Привет, Хабр! На связи Евгения Устинова, старший аналитик сетевой безопасности группы компаний «Гарда» . В статье хочу рассказать, как нам удалось связать инструментарий двух группировок через особенности реализации сетевых протоколов. Отследить эволюцию инструментов группировки SilverFox – например, ПО Winos – по отпечатку процедуры сетевой коммуникации оказалось довольно сложной задачей, поэтому я решила поделиться кейсом. Подключайтесь к расследованию

https://habr.com/ru/companies/garda/articles/962222/

#разбор_атаки #Winos #Silverfox #вредоносы #фишинг #ValleyRAT #apt41 #winnti

#winnti #apt41 #valleyrat #фишинг #вредоносы #silverfox

Pyrzout :vm: @[email protected] · 2025-06-09 · 18:45 UTC

Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign https://www.securityweek.com/chinese-espionage-crews-circle-sentinelone-in-year-long-reconnaissance-campaign/ #IncidentResponse #Malware&Threats #SentinelLabs #NationState #SentinelOne #PurpleHaze #Shadowpad #APT41 #China

#incidentresponse #malware #sentinellabs #nationstate #sentinelone #purplehaze

Pyrzout :vm: @[email protected] · 2025-06-09 · 18:45 UTC

Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign https://www.securityweek.com/chinese-espionage-crews-circle-sentinelone-in-year-long-reconnaissance-campaign/ #IncidentResponse #Malware&Threats #SentinelLabs #NationState #SentinelOne #PurpleHaze #Shadowpad #APT41 #China

#incidentresponse #malware #sentinellabs #nationstate #sentinelone #purplehaze

Pyrzout :vm: @[email protected] · 2025-02-20 · 22:50 UTC

Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines – Source: www.securityweek.com https://ciso2ciso.com/chinese-apt-tools-found-in-ransomware-schemes-blurring-attribution-lines-source-www-securityweek-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #Malware&Threats #securityweekcom #securityweek #NationState #Cybercrime #ransomware #TrendMicro #Shadowpad #ChinaAPT #symantec #APT41 #PlugX

#rssfeedpostgeneratorecho #cybersecuritynews #malware #securityweekcom #securityweek #nationstate

Pyrzout :vm: @[email protected] · 2025-02-20 · 17:30 UTC

Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines https://www.securityweek.com/chinese-apt-tools-found-in-ransomware-schemes-blurring-attribution-lines/ #Malware&Threats #NationState #Cybercrime #ransomware #TrendMicro #Shadowpad #ChinaAPT #Symantec #APT41 #PlugX

#malware #nationstate #cybercrime #ransomware #trendmicro #shadowpad

Pyrzout :vm: @[email protected] · 2024-08-01 · 23:40 UTC

Chinese Hackers Targeted Taiwanese Research Institute with ShadowPad and Cobalt Strike https://thecyberexpress.com/chinese-hackers-apt41-targeted-taiwan/ #TheCyberExpressNews #CybersecurityNews #Taiwaneseresearch #TheCyberExpress #FirewallDaily #cobaltstrike #ShadowPad #Taiwanese #Chinese #APT41

#thecyberexpressnews #cybersecuritynews #taiwaneseresearch #thecyberexpress #firewalldaily #cobaltstrike

Just Another Blue Teamer @[email protected] · 2024-04-12 · 13:37 UTC

Happy Friday everyone!

It's always a good morning when you get news of some new MITRE ATT&CK Tactics, Techniques, or Sub-techniques! Nate Nelson highlights the new additions and discusses how #APT37 and #APT41 are adopting the techniques in recent attacks! Enjoy and Happy Hunting!

DPRK Exploits 2 MITRE Sub-Techniques: Phantom DLL Hijacking, TCC Abuse
https://www.darkreading.com/vulnerabilities-threats/dprk-exploits-mitre-sub-techniques-phantom-dll-hijacking-tcc-abuse

#CyberSecurity #ITSecurity #InfoSec #BlueTeam #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting! #readoftheday

#apt37 #apt41 #cybersecurity #itsecurity #infosec #blueteam

Bob Carver @[email protected] · 2023-04-17 · 16:23 UTC

The starting point of the attack is a phishing email that contains links to a password-protected file hosted on Google Drive, which, in turn, incorporates the GC2 tool to read commands from Google Sheets and exfiltrate data using the cloud storage service. https://thehackernews.com/2023/04/google-uncovers-apt41s-use-of-open.html #CyberSecurity #Google #China #APT41 #GC2 #GoogleSheets #GoogleDrive

#cybersecurity #google #china #apt41 #gc2 #googlesheets

Justin (koavf)🌻🍉🇪🇭🌿 @[email protected] · 2022-12-06 · 02:01 UTC

Chinese black hat, criminal hackers have stolen millions of dollars of COVID-19 relief money from the United States: https://www.reuters.com/technology/chinese-hackers-stole-millions-worth-us-covid-relief-money-secret-service-says-2022-12-05/

#reuters #covid #covid19 #covidrelief #hacking #hackers #theft #china #peoplesrepublicofchina #mainlandchina #apt41

#reuters #covid #covid19 #covidrelief #hacking #hackers