Bulletins d'actualité : Différence entre versions

De Docaposte Cyberdéfense
Aller à : navigation, rechercher
Ligne 15 : Ligne 15 :
 
<br>
 
<br>
 
<br>
 
<br>
<rss max=5 highlight="CVE">https://www.us-cert.gov/ncas/alerts.xml</rss>
+
<rss max=5 highlight="CVE">https://securelist.com/feed/</rss>

Version du 1 mars 2018 à 12:47

Classification

TLP:WHITEC0


Edb-2015-theme-logo641.png

Offensive Security’s Exploit Database



Doc.png

ToddyCat: your hidden email assistant. Part 2
An in-depth analysis of Umbrij, a new tool used by the ToddyCat APT group to compromise corporate email communications in Gmail. The attack targeted OAuth authorization tokens, allowing threat actors to gain access to Google services.

Doc.png

The Gentlemen are knocking: сustom backdoors and evolving tactics
Kaspersky researchers analyze incidents related to The Gentlemen RaaS group, disclose their tools and TTPs, and find a new ransomware variant.

Doc.png

Inside the 2026 SMB threat landscape: From phishing and scams to fake AI tools
Kaspersky researchers analyze the threat landscape for SMBs in 2026: the rise of attacks involving fake AI tools, phishing schemes, and data sold on the dark web.

Doc.png

StrikeShark: investigating a new campaign delivering Cobalt Strike through SharkLoader
Kaspersky researchers analyze a new global campaign dubbed StrikeShark that delivers Cobalt Strike Beacon via custom SharkLoader malware.

Doc.png

A VBScript campaign distributed through WhatsApp deploying RMM software
A Kaspersky researcher analyzes a global malicious campaign that distributes VBS scripts via WhatsApp delivering a UEMS RMM agent through a multi-stage infection chain.

Récupérée de « https://csirt.docapost.fr/index.php?title=Bulletins_d%27actualité&oldid=1218 »