Frequent verification codes may appear for non-Mainland China IP visits. If visitors are severely affected, please send [IP|ASN](3.215.79.68|AS14618) to the bottom mailbox to add to the whitelist

文章列表

2022-06-27 20:47   27th June – Threat Intelligence Report    #checkpoint #威胁情报 For the latest discoveries in cyber research for the week of 27th June, please download our Threat Intelligence Bulletin. Top Attacks and Breaches A Chinese APT group dubbed Bronze Starlight (APT10) is attempting to use ransomware attacks mainly against Japanese companies, only as decoy to hide its

2022-06-22 17:52   Chinese actor takes aim, armed with Nim Language and Bizarro AES    #checkpoint #威胁情报 Executive Summary In this article, Check Point Research shares findings on a group / activity cluster with ties to Tropic Trooper: The infection chain includes a previously undescribed loader (dubbed “Nimbda”) written in Nim language. This loader was observed bundled with a Chinese language greyware

2022-06-20 23:39   20th June – Threat Intelligence Report    #checkpoint #威胁情报 For the latest discoveries in cyber research for the week of 20th June, please download our Threat Intelligence Bulletin. Top Attacks and Breaches Check Point Research has exposed an Iranian spear-phishing operation targeting high profile Israeli and US executives. As part of their operations, the a

2022-06-14 17:57   Iranian Spear-Phishing Operation Targets Former Israeli and US High-Ranking Officials    #checkpoint #威胁情报 Introduction Check Point Research uncovers a recent Iranian-based spear-phishing operation aimed against former Israeli officials, high-ranking military personnel, research fellows in research institutions, think tanks, and against Israeli citizens. The attacks use a custom phishing infrastructure,

2022-06-13 21:00   13th June – Threat Intelligence Report    #checkpoint #威胁情报 For the latest discoveries in cyber research for the week of 13th June, please download our Threat Intelligence Bulletin. Top Attacks and Breaches The Italian municipality of Palermo has been victim of a ransomware attack that caused a large-scale service outage affecting over a million people. The

2022-06-07 00:46   6th June – Threat Intelligence Report    #checkpoint #威胁情报 For the latest discoveries in cyber research for the week of 6th June, please download our Threat Intelligence Bulletin. Top Attacks and Breaches An unaffiliated threat actor has been initialing a phishing campaign targeting government entities in Europe and the U.S, exploiting the recently disclose

2022-06-02 17:52   Vulnerability within the UNISOC baseband opens mobile phones communications to remote hacker attacks    #checkpoint #威胁情报 Research by: Slava Makkaveev Introduction Do you remember push-button telephones? Many of them were based on chips from Spreadtrum Communications Inc., a Chinese chip manufacturer founded in 2001. In 2011, over half of all phones in China were powered by Spreadtrum chips. In 2018, Spreadtrum rebrand

2022-05-31 19:37   XLoader Botnet: Find Me If You Can    #checkpoint #威胁情报 Research by: Alexey Bukhteyev & Raman Ladutska Introduction In July 2021, CPR released a series of three publications covering different aspects of how the Formbook and XLoader malware families function. We described how XLoader emerged in the Darknet community to fill the empty niche after Form

2022-05-31 00:50   30th May – Threat Intelligence Report    #checkpoint #威胁情报 For the latest discoveries in cyber research for the week of 30th May, please download our Threat Intelligence Bulletin. Top Attacks and Breaches Check Point Research reported how the Conti ransom group has taken cybercrime to a new, geopolitical level. They intervene in the internal politics of Cos

2022-05-23 21:28   23rd May – Threat Intelligence Report    #checkpoint #威胁情报 For the latest discoveries in cyber research for the week of 23rd May, please download our Threat Intelligence Bulletin. Top Attacks and Breaches Check Point Research has unveiled a targeted cyber-espionage operation against at least two research institutes in Russia, which are part of the Rostec Co

2022-05-19 18:22   Twisted Panda: Chinese APT espionage operation against Russian’s state-owned defense institutes    #checkpoint #威胁情报 Introduction In the past two months, we observed multiple APT groups attempting to leverage the Russia and Ukraine war as a lure for espionage operations. It comes as no surprise that Russian entities themselves became an attractive target for spear-phishing campaigns that are exploiting the sanctio

2022-05-18 18:09   #ALHACK: Bad ALAC- one codec to hack the whole world    #checkpoint #威胁情报 Research by: Slava Makkaveev, Netanel Ben Simon Introduction The Apple Lossless Audio Codec (ALAC) is an audio coding format developed by Apple Inc. in 2004 for lossless data compression of digital music. After initially keeping it proprietary, in late 2011 Apple made the codec open source. Since th

2022-05-16 22:51   16th May – Threat Intelligence Report    #checkpoint #威胁情报 For the latest discoveries in cyber research for the week of 16th May, please download our Threat Intelligence Bulletin. Top Attacks and Breaches Check Point Research revealed a yearlong campaign targeting German companies, focused on German car dealerships and manufacturers. Threat actors used a va

2022-05-11 22:30   Ransomversary : Wannacry’s 5th Anniversary Special and The Evolution of Ransomware    #checkpoint #威胁情报 Five years ago today, the world witnessed the most destructive ransomware attack ever. Its name was Wannacry, and it changed everything. What happened, how has ransomware evolved since, and have we learned our lesson? Or could something just like it happen again?The post Ransomversary : Wannacry&#82

2022-05-09 18:59   9th May – Threat Intelligence Report    #checkpoint #威胁情报 For the latest discoveries in cyber research for the week of 9th May, please download our Threat Intelligence Bulletin. Top Attacks and Breaches The Ukrainian IT army has disrupted Russia’s alcohol distribution by performing DDoS attacks to limit access to a portal called State Automated Alcoh

By QianX.in