Severity High Analysis Summary UNC788 Iran-based nation-state threat group called Phosphorus (aka UNC788, TA453, COBALT ILLUSION, Charming Kitten, Newscaster, Magic Hound, and APT35) that has been […]

Severity High Analysis Summary Sidewinder is a suspected Indian threat actor group that has been active since 2012. They have been observed attacking political, military, and […]

Severity High Analysis Summary Donot APT group has been actively dropping malicious samples and targeting Government users to exfiltrate data. The group has previously been active […]

Severity High Analysis Summary QBot, often known as QakBot, is modular information malware. It has been operational since 2007. This banking Trojan, QakBot steals financial data […]

Severity High Analysis Summary An emergent and effective data-harvesting tool dubbed Oski is proliferating in North America and China, stealing online account credentials, credit card numbers, […]

Severity Medium Analysis Summary Snake is a modular .NET keylogger and credential stealer first spotted in late November 2020. Since then, new campaigns spreading this malware […]

Severity Medium Analysis Summary A new AgentTesla campaign is seen targeting victims with malspam. AgentTesla is known for stealing data from different applications on victim machines, […]

Severity High Analysis Summary Ursnif banking trojan also known as Gozi and Dreambot has been around for more than 10 years. It gained popularity in 2015 […]

Severity Medium Analysis Summary Since 2016, FormBook has been active as a data-stealing malware that affects 4% of enterprises in 2020. It tracks and monitors keystrokes, […]