ABOUT
CVE DATABASE
CONTACT
VISIT SENTINELONE.COM

Advanced Persistent Threat

BNThief Feature
Advanced Persistent Threat

BlueNoroff Hidden Risk | Threat Actor Targets Macs with Fake Crypto News and Novel Persistence
Raffaele Sabato, Phil Stokes & Tom Hegel /

SentinelLabs has observed a suspected DPRK threat actor targeting Crypto-related businesses with novel multi-stage malware.

Read More
ChamelGang Ftr 5
Advanced Persistent Threat

ChamelGang & Friends | Cyberespionage Groups Attacking Critical Infrastructure with Ransomware
Aleksandar Milenkoski & Julian-Ferdinand Vögele (Recorded Future) /

Threat actors in the cyberespionage ecosystem are using ransomware for financial gain, disruption, distraction, misattribution, and the removal of evidence.

Read More
I Soons Data Breach The Leak That Revealed Chinas Cyber Operations 5
Advanced Persistent Threat

Unmasking I-Soon | The Leak That Revealed China’s Cyber Operations
Dakota Cary & Aleksandar Milenkoski /

The I-Soon leak reveals the maturing nature of China’s cyber espionage and a competitive hacker marketplace driven by government demands.

Read More
A Glimpse Into Future ScarCruft Campaigns Attackers Gather Strategic Intelligence And Target Cybersecurity Professionals 20
Advanced Persistent Threat

ScarCruft | Attackers Gather Strategic Intelligence and Target Cybersecurity Professionals
Aleksandar Milenkoski & Tom Hegel /

New ScarCruft activity suggests the adversary is planning to target cybersecurity professionals and businesses.

Read More
Sandman APT China Based Adversaries Embrace Lua 19
Advanced Persistent Threat

Sandman APT | China-Based Adversaries Embrace Lua
Aleksandar Milenkoski /

SentinelLabs, Microsoft, and PwC threat intelligence researchers provide attribution-relevant information on the Sandman APT cluster.

Read More
Elephant Hunting Inside An Indian Hack For Hire Group 9
Advanced Persistent Threat

Elephant Hunting | Inside an Indian Hack-For-Hire Group
Tom Hegel /

Exploring the technical intricacies of Appin, a hack-for-hire group, revealing confirmed attribution and global threat activity, both old and new.

Read More
Arid Viper APTs Nest Of SpyC23 Malware Continues To Target Android Devices 1
Advanced Persistent Threat

Arid Viper | APT’s Nest of SpyC23 Malware Continues to Target Android Devices
Alex Delamotte /

Hamas-aligned threat actor delivers spyware through weaponized apps posing as Telegram or Skipped messenger.

Read More
The Israel Hamas War Cyber Domain State Sponsored Activity Of Interest 6
Advanced Persistent Threat

The Israel-Hamas War | Cyber Domain State-Sponsored Activity of Interest
Tom Hegel /

Cyber warfare occurring amidst the Israel-Hamas war underscores the importance of keeping tabs on rising APTs and opportunistic hacktivists.

Read More
Sandman APT A Mystery Group Targeting Telcos With A LuaJIT Toolkit 4
Advanced Persistent Threat

Sandman APT | A Mystery Group Targeting Telcos with a LuaJIT Toolkit
Aleksandar Milenkoski /

Sophisticated threat actor deploys high-end malware utilizing the LuaJIT platform to backdoor telcos in Europe, Middle East and South Asia.

Read More
CapraTube Transparent Tribes CapraRAT Mimics YouTube To Hijack Android Phones 3
Advanced Persistent Threat

CapraTube | Transparent Tribe’s CapraRAT Mimics YouTube to Hijack Android Phones
Alex Delamotte /

Pakistan-aligned threat actor weaponizes fake YouTube apps on the Android platform to deliver mobile remote access trojan spyware.

Read More
1 2 3 4