Threat Overview A recent threat report published by CyberHunter_NL on April 30, 2025, sheds light on a sophisticated cyber-attack campaign orchestrated by TheWizards APT group. This Chinese-aligned cyber-attack group is actively targeting victims in the Philippines,
Continue ReadingMonth: April 2025
Outlaw Cybergang Attacking Targets Worldwide
Threat Overview The Security Operations Center (SOC) has identified a significant cyber threat through a recent report published by AlienVault on April 29, 2025. The report details the activities of the Outlaw cybergang, which is actively
Continue Reading
ReliaQuest Uncovers New Critical Vulnerability in SAP NetWeaver
Threat Overview The Security Operations Center (SOC) has received a critical threat report published by CyberHunter_NL on April 28, 2025. The report, titled ReliaQuest Uncovers New Critical Vulnerability in SAP NetWeaver, highlights a significant security flaw
Continue Reading
Navigating Through The Fog: A Comprehensive Threat Report
Threat Overview The Security Operations Center (SOC) has identified a significant threat report published by AlienVault on April 28, 2025. Titled Navigating Through The Fog, this report details an alarming discovery of an open directory linked
Continue Reading
New Version of Triada Spreads Embedded in Firmware of Android Devices
Threat Overview A new threat report published by AlienVault on April 25, 2025, reveals a disturbing trend in the cybersecurity landscape. Kaspersky researchers have uncovered a sophisticated version of the Triada Trojan that is being distributed
Continue Reading
SnakeKeylogger A Multistage Info Stealer Malware Campaign
Threat Overview The Security Operations Center (SOC) has identified a new and sophisticated malware campaign named SnakeKeylogger. This threat report, published by AlienVault on April 24, 2025, provides an in-depth analysis of the malware's capabilities, infection
Continue Reading
Introducing ToyMaker: A New Initial Access Broker Threat
Threat Overview The cybersecurity landscape is constantly evolving, with new threats emerging regularly. One of the latest threats identified by AlienVault and Talos Intelligence is an initial access broker (IAB) dubbed 'ToyMaker.' This threat actor operates
Continue Reading
Threat Infrastructure Uncovered Before Activation
Threat Overview In the ever-evolving landscape of cybersecurity, staying ahead of potential threats is crucial for maintaining robust defenses. A recent threat report published by AlienVault on April 22, 2025, sheds light on a significant development
Continue Reading
Case of Attacks Targeting MS-SQL Servers to Install Ammyy Admin
Threat Overview A recent threat report published by AlienVault on April 22, 2025, highlights a series of attacks targeting poorly managed Microsoft SQL (MS-SQL) servers. These attacks involve the installation of Ammyy Admin, a remote control
Continue Reading
Akira Ransomware Road To Glory | Blog | Dark Atlas
Threat Overview The Akira ransomware group has emerged as a significant threat in the cybersecurity landscape, impacting over 250 organizations and amassing nearly $42 million (USD) in ransom proceeds since March 2023. This alarming trend was
Continue Reading