Lucene search
+L

4 matches found

hivepro
hivepro
added 2023/09/26 6:23 a.m.22 views

Attacks, Vulnerabilities and Actors 18 September to 24 September 2023

For a detailed threat digest, download the pdf file here Summary HiveForce Labs has recently made several significant discoveries related to cybersecurity threats. Over the past week, we identified a total of eight executed attacks, five instance of adversary activity, and eleven vulnerabilities...

7.1AI score
Exploits0
hivepro
hivepro
added 2023/09/21 10:39 a.m.17 views

Earth Lusca’s Sneaky Moves Unleashes New Linux Backdoor

Threat Level Actor Report For a detailed threat advisory, download the pdf file here Summary Earth Lusca, a highly sophisticated Chinese threat actor, is believed to have resumed its operations in the first half of 2023. This cyber espionage group utilizes the SprySOCKS backdoor, primarily...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2023/09/19 11:10 a.m.49 views

Earth Lusca's New SprySOCKS Linux Backdoor Targets Government Entities

The China-linked threat actor known as Earth Lusca has been observed targeting government entities using a never-before-seen Linux backdoor called SprySOCKS. Earth Lusca was first documented by Trend Micro in January 2022, detailing the adversary's attacks against public and private sector entiti...

10CVSS8.8AI score0.99986EPSS
Exploits89
Trend Micro Simply Security
Trend Micro Simply Security
added 2023/09/18 12:0 a.m.11 views

Earth Lusca Employs New Linux Backdoor, Uses Cobalt Strike for Lateral Movement

While monitoring Earth Lusca, we discovered an intriguing, encrypted file on the threat actor's server — a Linux-based malware, which appears to originate from the open-source Windows backdoor Trochilus, which we've dubbed SprySOCKS due to its swift behavior and SOCKS implementation...

6.9AI score
Exploits0
Rows per page
Query Builder