ABOUT
CVE DATABASE
CONTACT
VISIT SENTINELONE.COM

Labs

Chinese Entanglement DLL Hijacking In The Asian Gambling Sector By Aleksandar Milenkoski And Tom Hegel 5
Adversary

Chinese Entanglement | DLL Hijacking in the Asian Gambling Sector
Aleksandar Milenkoski /

Threat actors abuse Adobe Creative Cloud, Edge, and other executables vulnerable to DLL hijacking in campaign targeting the Southeast Asian gambling sector.

Read More
Comrades In Arms North Korea Compromises Sanctioned Russian Missile Engineering Company 1
Adversary

Comrades in Arms? | North Korea Compromises Sanctioned Russian Missile Engineering Company
Tom Hegel /

North Korean threat actors attempt to further missile program by compromising sanctioned Russian defense company with OpenCarrot backdoor.

Read More
JumpCloud Intrusion Attacker Infrastructure Links Compromise To North Korean APT Activity 5
Advanced Persistent Threat

JumpCloud Intrusion | Attacker Infrastructure Links Compromise to North Korean APT Activity
Tom Hegel /

North Korean state sponsored APT is behind a new supply chain attack on zero-trust directory platform JumpCloud.

Read More
Cloudy With A Chance Of Credentials AWS Targeting Cred Stealer Expands To Azure GCP 9
Crimeware

Cloudy With a Chance of Credentials | AWS-Targeting Cred Stealer Expands to Azure, GCP
Alex Delamotte /

Cloud credentials stealing campaign expands to target Azure and Google Cloud via unpatched web app vulnerabilities.

Read More
Quiver – Using Cutting Edge ML To Detect Interesting Command Lines For Hunters 2
LABScon

LABScon Replay | Quiver – Using Cutting Edge ML to Detect Interesting Command Lines for Hunters
LABScon /

Gal Braun and Dean Langsam explore how LLMs can be trained to parse command lines and perform tasks like attribution and detection.

Read More
Automating String Decryption And Other Reverse Engineering Tasks In Radare2 With R2pipe By Phil Stokes 1
Security Research

Automating String Decryption and Other Reverse Engineering Tasks in radare2 With r2pipe
Phil Stokes /

Learn how to drive radare2 with r2pipe for automated binary analysis, string decryption and other common reversing tasks.

Read More
Star Gazing Using A Full Galaxy Of YARA Methods To Pursue An Apex Actor
LABScon

LABScon Replay | Star-Gazing: Using a Full Galaxy of YARA Methods to Pursue an Apex Actor
LABScon /

Greg Lesnewich explores how to to pursue an apex predator using little more than a local instance of YARA and some publicly available open-source tooling.

Read More
Kimsuky Strikes Again New Social Engineering Campaign Aims To Steal Credentials And Gather Strategic Intelligence 5
Advanced Persistent Threat

Kimsuky Strikes Again | New Social Engineering Campaign Aims to Steal Credentials and Gather Strategic Intelligence
Aleksandar Milenkoski /

Threat actor targets experts in North Korean affairs with spoofed URLs and weaponized Office documents to steal Google and other credentials.

Read More
Radare2 Power Ups Delivering Faster MacOS Malware Analysis With R2 Customization 5
Security Research

Radare2 Power Ups | Delivering Faster macOS Malware Analysis With r2 Customization
Phil Stokes /

Learn how to customize radare2 with user-defined aliases, macros and functions for faster and easier binary diffing and analysis.

Read More
Operation Magalenha Long Running Campaign Pursues Portuguese Credentials And PII 3
Adversary

Operation Magalenha | Long-Running Campaign Pursues Portuguese Credentials and PII
Aleksandar Milenkoski /

A Brazilian threat actor is targeting users of over 30 Portuguese financial institutions with custom backdoors.

Read More
1 3 4 5 6 7 23