Evasion Techniques

Moldovan Arrest Tied to DoppelPaymer Ransomware: Implications for Threat Actors

Threat Intelligence

Moldovan Arrest Tied to DoppelPaymer Ransomware: Implications for Threat Actors

Moldovan authorities have detained a 45-year-old individual linked to the DoppelPaymer ransomware group, which targeted Dutch organizations...

Emoji-Based Exploits Bypass AI Content Filters in Microsoft, Nvidia, and Meta Models

Red-Team

Emoji-Based Exploits Bypass AI Content Filters in Microsoft, Nvidia, and Meta Models

Cybersecurity researchers have identified a critical vulnerability in AI content moderation systems developed by Microsoft, Nvidia, and...

GFI MailEssentials .NET Deserialization Vulnerability (CVE-2025-34491) Allows Remote Code Execution

CVE News

GFI MailEssentials .NET Deserialization Vulnerability (CVE-2025-34491) Allows Remote Code Execution

A critical vulnerability (CVE-2025-34491) in GFI MailEssentials enables authenticated attackers to execute arbitrary code through .NET deserialization...

Obfuscation Techniques in Cybersecurity: How Attackers Evade Detection

Red-Team

Obfuscation Techniques in Cybersecurity: How Attackers Evade Detection

Obfuscation remains a critical tool for attackers aiming to conceal malicious code from defenders. By deliberately complicating...

Widespread Jailbreak Vulnerabilities in Generative AI Models: Technical Analysis and Mitigations

Red-Team

Widespread Jailbreak Vulnerabilities in Generative AI Models: Technical Analysis and Mitigations

Two newly discovered systemic jailbreak vulnerabilities have exposed critical weaknesses in generative AI models from major providers,...

ResolverRAT: A New RAT Targeting Healthcare and Pharmaceutical Sectors

Malware Analysis

ResolverRAT: A New RAT Targeting Healthcare and Pharmaceutical Sectors

A newly discovered remote access trojan (RAT), dubbed ResolverRAT, has been observed targeting organizations in the healthcare...

New Cryptojacking Campaign Exploits Docker with Advanced Evasion Techniques

Malware Analysis

New Cryptojacking Campaign Exploits Docker with Advanced Evasion Techniques

A newly discovered cryptojacking campaign is targeting Docker environments using sophisticated evasion techniques to deploy cryptocurrency miners...

Emerging Phishing Techniques: Tactics, Trends, and Mitigation Strategies

Threat Intelligence

Emerging Phishing Techniques: Tactics, Trends, and Mitigation Strategies

Phishing remains one of the most persistent and effective attack vectors in cybersecurity, with attackers constantly refining...

Ransomware Groups and Russian Hackers Adopt Fast-Flux DNS for Infrastructure Evasion

Threat Intelligence

Ransomware Groups and Russian Hackers Adopt Fast-Flux DNS for Infrastructure Evasion

Cybercriminal groups, including ransomware operators and Russian state-sponsored actors, are reviving an old technique called “fast flux”...

Morphing Meerkat PhaaS Operation Leverages DNS-over-HTTPS for Evasion

Threat Intelligence

Morphing Meerkat PhaaS Operation Leverages DNS-over-HTTPS for Evasion

A newly identified phishing-as-a-service (PhaaS) operation, dubbed Morphing Meerkat by researchers, has adopted DNS-over-HTTPS (DoH) to bypass...

JPHP-Based Malware Evades Detection Using Java-PHP Hybrid Approach

Malware Analysis

JPHP-Based Malware Evades Detection Using Java-PHP Hybrid Approach

A newly discovered malware campaign is leveraging the JPHP interpreter – a PHP implementation running on the...

Ransom.Win32.MAOLOA.THAAHBA: Technical Analysis of a Windows Ransomware Strain

Malware Analysis

Ransom.Win32.MAOLOA.THAAHBA: Technical Analysis of a Windows Ransomware Strain

Ransom.Win32.MAOLOA.THAAHBA is a targeted ransomware variant affecting Windows systems, first observed in January 2021. While classified as...

Ransom.Win64.CONTI.AA: Analyzing the Persistent Conti Ransomware Threat

Malware Analysis

Ransom.Win64.CONTI.AA: Analyzing the Persistent Conti Ransomware Threat

Ransom.Win64.CONTI.AA, a variant of the notorious Conti ransomware family, remains a significant threat to Windows systems despite...

Earth Preta Evades Detection by Blending Legitimate and Malicious Tools

APT-News

Earth Preta Evades Detection by Blending Legitimate and Malicious Tools

The advanced persistent threat (APT) group Earth Preta, also known as Mustang Panda, has refined its evasion...

Cobalt Strike 4.11: Shhhhhh, Beacon is Sleeping….

Fig. 1 – A screenshot showing the results of Get-InjectedThreadEx scanning a process into which a 4.11 Beacon has just been injected.

C2-Updates

Cobalt Strike 4.11: Shhhhhh, Beacon is Sleeping….

DNS Over HTTPS Beacon The new DoH implementation blends DNS C2 with legitimate web traffic: Default configuration...

Evasion Techniques

Moldovan Arrest Tied to DoppelPaymer Ransomware: Implications for Threat Actors

Emoji-Based Exploits Bypass AI Content Filters in Microsoft, Nvidia, and Meta Models

GFI MailEssentials .NET Deserialization Vulnerability (CVE-2025-34491) Allows Remote Code Execution

Obfuscation Techniques in Cybersecurity: How Attackers Evade Detection

Widespread Jailbreak Vulnerabilities in Generative AI Models: Technical Analysis and Mitigations

ResolverRAT: A New RAT Targeting Healthcare and Pharmaceutical Sectors

New Cryptojacking Campaign Exploits Docker with Advanced Evasion Techniques

Emerging Phishing Techniques: Tactics, Trends, and Mitigation Strategies

Ransomware Groups and Russian Hackers Adopt Fast-Flux DNS for Infrastructure Evasion

JPHP-Based Malware Evades Detection Using Java-PHP Hybrid Approach

Ransom.Win32.MAOLOA.THAAHBA: Technical Analysis of a Windows Ransomware Strain

Ransom.Win64.CONTI.AA: Analyzing the Persistent Conti Ransomware Threat

Earth Preta Evades Detection by Blending Legitimate and Malicious Tools

Cobalt Strike 4.11: Shhhhhh, Beacon is Sleeping….

You may have missed

Procolored Printer Drivers Distributed Malware for Six Months: Technical Analysis and Mitigation

Tor Oniux: Kernel-Level Network Anonymization for Linux Applications

Google Chrome’s Security Update: Blocking Admin-Level Launches in Windows

Australian Human Rights Commission Data Breach: Technical Analysis and Impact