ABOUT
CVE DATABASE
CONTACT
VISIT SENTINELONE.COM

Labs

The Mystery Of Metador An Unattributed Threat Hiding In Telcos ISPs And Universities 3
Advanced Persistent Threat

The Mystery of Metador | An Unattributed Threat Hiding in Telcos, ISPs, and Universities
Juan Andrés Guerrero-Saade /

An elusive adversary is attacking high-value targets with impunity using novel malware frameworks and custom-built backdoors.

Read More
Intermittent Encryption For Speed And Evasion On The Rise A Trending Feature On The Ransomware Scene By Aleksandar Milenkoski Jim Walter 5
Crimeware

Crimeware Trends | Ransomware Developers Turn to Intermittent Encryption to Evade Detection
Aleksandar Milenkoski /

Partially encrypting victims' files improves ransomware speed and aids evasion. First seen in LockFile, the technique is now being widely adopted.

Read More
PyPI Phishing Campaign JuiceLedger Threat Actor Pivots From Fake Apps To Supply Chain Attacks 1
Crimeware

PyPI Phishing Campaign | JuiceLedger Threat Actor Pivots From Fake Apps to Supply Chain Attacks
Amitai Ben Shushan Ehrlich /

A new threat actor is spreading infostealer malware through targeted attacks on developers and fraudulent cryptotrading applications.

Read More
Who Needs Macros Threat Actors Pivot To Abusing Explorer And Other LOLBins Via Windows Shortcuts 6
Crimeware

Who Needs Macros? | Threat Actors Pivot to Abusing Explorer and Other LOLBins via Windows Shortcuts 
Aleksandar Milenkoski /

Crimeware vendors say 'macros are dead', but they have a new weapon to help threat actors successfully deploy malware.

Read More
LockBit 3.0 Update Unpicking The Ransomwares Latest Anti Analysis And Evasion Techniques 5
Crimeware

LockBit 3.0 Update | Unpicking the Ransomware’s Latest Anti-Analysis and Evasion Techniques
Jim Walter /

The self-proclaimed 'oldest ransomware affiliate on the planet' has new tricks and new features and continues to beat enterprise defenses.

Read More
Inside Malicious Windows Apps For Malware Deployment By Aleksandar Milenkoski 3
Security Research

Inside Malicious Windows Apps for Malware Deployment
Aleksandar Milenkoski /

Learn how threat actors manipulate Windows to install malicious apps that are trusted by the system, and how to defend against them.

Read More
Targets Of Interest Russian Organizations Increasingly Under Attack By Chinese APTs 7
Adversary

Targets of Interest | Russian Organizations Increasingly Under Attack By Chinese APTs
Tom Hegel /

Chinese-linked phishing campaign seeks to compromise Russian targets with custom malware designed for espionage.

Read More
Aoqin Dragon Newly Discovered Chinese Linked APT Has Been Quietly Spying On Organizations For 10 Years 5
Advanced Persistent Threat

Aoqin Dragon | Newly-Discovered Chinese-linked APT Has Been Quietly Spying On Organizations For 10 Years
Joey Chen /

Targeting organizations in SE Asia and Australia, Aoqin Dragon uses pornographic-themed lures and custom backdoors to conduct espionage operations.

Read More
Use Of Obfuscated Beacons In ‘pymafka Supply Chain Attack Signals A New Trend In MacOS Attack TTPs 1
Security & Intelligence

Use of Obfuscated Beacons in ‘pymafka’ Supply Chain Attack Signals a New Trend in macOS Attack TTPs
Phil Stokes /

A new typosquatting attack against the PyPI repository targets enterprise Macs with a distinctive obfuscation method.

Read More
CrateDepression Rust Supply Chain Attack Infects Cloud CI Pipelines With Go Malware 1
Crimeware

CrateDepression | Rust Supply-Chain Attack Infects Cloud CI Pipelines with Go Malware
Juan Andrés Guerrero-Saade /

Software developers using GitLab CI are being targeted with malware through a typosquatting attack, putting downstream users at risk.

Read More
1 6 7 8 9 10 22