home.social

#blindeagle — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #blindeagle, aggregated by home.social.

  1. Zscaler ThreatLabz documents BlindEagle APT's sophisticated attack on Colombian government infrastructure using steganography, compromised email accounts, and dual malware deployment (Caminho + DCRat). The September 2025 campaign demonstrates evolved tradecraft including Discord CDN abuse and fileless execution chains.

    #SecurityLand #ThreatHorizon #Zscaler #BlindEagle #Colombia #Government #Ecuador #APT #RAT #Malware

    Read More: security.land/blindeagle-colom

  2. Zscaler ThreatLabz documents BlindEagle APT's sophisticated attack on Colombian government infrastructure using steganography, compromised email accounts, and dual malware deployment (Caminho + DCRat). The September 2025 campaign demonstrates evolved tradecraft including Discord CDN abuse and fileless execution chains.

    #SecurityLand #ThreatHorizon #Zscaler #BlindEagle #Colombia #Government #Ecuador #APT #RAT #Malware

    Read More: security.land/blindeagle-colom

  3. Zscaler ThreatLabz documents BlindEagle APT's sophisticated attack on Colombian government infrastructure using steganography, compromised email accounts, and dual malware deployment (Caminho + DCRat). The September 2025 campaign demonstrates evolved tradecraft including Discord CDN abuse and fileless execution chains.

    #SecurityLand #ThreatHorizon #Zscaler #BlindEagle #Colombia #Government #Ecuador #APT #RAT #Malware

    Read More: security.land/blindeagle-colom

  4. Zscaler ThreatLabz documents BlindEagle APT's sophisticated attack on Colombian government infrastructure using steganography, compromised email accounts, and dual malware deployment (Caminho + DCRat). The September 2025 campaign demonstrates evolved tradecraft including Discord CDN abuse and fileless execution chains.

    #SecurityLand #ThreatHorizon #Zscaler #BlindEagle #Colombia #Government #Ecuador #APT #RAT #Malware

    Read More: security.land/blindeagle-colom

  5. Zscaler ThreatLabz documents BlindEagle APT's sophisticated attack on Colombian government infrastructure using steganography, compromised email accounts, and dual malware deployment (Caminho + DCRat). The September 2025 campaign demonstrates evolved tradecraft including Discord CDN abuse and fileless execution chains.

    #SecurityLand #ThreatHorizon #Zscaler #BlindEagle #Colombia #Government #Ecuador #APT #RAT #Malware

    Read More: security.land/blindeagle-colom

  6. 🚨 TAG-144 (Blind Eagle) continues ops vs South American gov’ts.
    Spearphishing w/ gov’t emails + steganography payloads in images (GitHub/Discord).

    Deploys RATs: AsyncRAT, Remcos, LimeRAT, XWorm.

    Details: technadu.com/tag-144-blind-eag

    #CyberSecurity #APT #BlindEagle

  7. 🚨 TAG-144 (Blind Eagle) continues ops vs South American gov’ts.
    Spearphishing w/ gov’t emails + steganography payloads in images (GitHub/Discord).

    Deploys RATs: AsyncRAT, Remcos, LimeRAT, XWorm.

    Details: technadu.com/tag-144-blind-eag

    #CyberSecurity #APT #BlindEagle

  8. Blind Eagle's North American Journey

    The eSentire Threat Response Unit (TRU) recently observed the Blind Eagle threat actor targeting the manufacturing industry in North America. The actor used phishing emails containing malicious VBS files that delivered the Ande Loader, which then deployed Remcos RAT and NjRAT payloads. Technical analysis shows Blind Eagle leveraging crypters developed by threat actors known as Roda and Pjoao1578. The campaign targeted Spanish-speaking users at manufacturing companies. eSentire recommends implementing EDR solutions and security awareness training to help defend against Blind Eagle.

    Pulse ID: 65f420f93280cbf7e41d2847
    Pulse Link: otx.alienvault.com/pulse/65f42
    Pulse Author: AlienVault
    Created: 2024-03-15 10:20:41

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #OTX #OpenThreatExchange #InfoSec #bot #CyberSecurity #NorthAmerica #RAT #Phishing #BlindEagle #ThreatResponseUnit #VBS #Manufacturing #eSentire #Email #EDR #RemcosRat #Remcos #AlienVault

  9. Blind Eagle uses Ande Loader Malware to Target Manufacturing Sector

    Pulse ID: 65f34f895a7392183fae8604
    Pulse Link: otx.alienvault.com/pulse/65f34
    Pulse Author: cryptocti
    Created: 2024-03-14 19:27:05

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #OTX #OpenThreatExchange #InfoSec #bot #CyberSecurity #Malware #BlindEagle #Manufacturing #cryptocti

  10. #BlindEagle, a financially motivated threat actor also known as #APT-C-36, has launched attacks targeting organizations in Colombia and Ecuador since at least 2018. andreafortuna.org/2023/02/28/b #cybersecurity