Bulwark Black LLC

Hackers Modifying Registry Keys to Establish Persistence via Scheduled Tasks

bulwarkblack2 years ago01 mins

Tackling Anti-Analysis Techniques of GuLoader and RedLine Stealer

bulwarkblack2 years ago2 years ago01 mins

https://unit42.paloaltonetworks.com/malware-configuration-extraction-techniques-guloader-redline-stealer/

Hackers target Apache RocketMQ servers vulnerable to RCE attacks

bulwarkblack2 years ago2 years ago01 mins

https://www.bleepingcomputer.com/news/security/hackers-target-apache-rocketmq-servers-vulnerable-to-rce-attacks/

North Korea Debuts ‘SpectralBlur’ Malware Amid macOS Onslaught

bulwarkblack2 years ago2 years ago01 mins

https://www.darkreading.com/threat-intelligence/north-korea-debuts-spectralblur-malware-amid-macos-onslaught

Iran’s APT33 targets US defense contractors with novel malware

bulwarkblack2 years ago2 years ago01 mins

https://www.scmagazine.com/news/iranian-threat-group-apt33-targets-us-defense-contractors-with-novel-malware

100 Days of YARA – 2023

bulwarkblack2 years ago2 years ago01 mins

https://bitsofbinary.github.io/yara/2023/01/01/100daysofyara.html

Hide and Seek in Windows’ Closet: Unmasking the WinSxS Hijacking Hideout

bulwarkblack2 years ago2 years ago01 mins

https://www.securityjoes.com/post/hide-and-seek-in-windows-closet-unmasking-the-winsxs-hijacking-hideout

Russia-linked APT Sandworm was inside Ukraine telecoms giant Kyivstar for months

bulwarkblack2 years ago2 years ago01 mins

Thumb

Name

Size

Date

IOCs_YARA_TTPs_Posted_Articles/ IOCs_YARA_TTPs_Posted_Articles

IOCs_YARA_TTPs_Posted_Articles

Open 99.71 KB 2024-01-12 January 12, 2024 2024-03-22 March 22, 2024

21 Items
99.71 KB

March 22, 2024

57f079932b

Bulwark Black LLC

Bulwark Black LLC

JDownloader Site Compromise Shows Why Trusted Downloads Still Need Verification

Fake OpenAI Hugging Face Repo Shows AI Supply Chain Risk Is Already Here

MCP Server Command Injection Shows Why AI Tools Need Real Isolation

Dirty Frag Turns Linux Footholds Into Root: What Defenders Should Do Now

Prompt Injection Just Became an RCE Problem for AI Agents

NASA Put a Geospatial AI Foundation Model in Orbit — That Should Make You Think

PAN-OS Captive Portal Zero-Day Shows Why Internet-Facing Edge Devices Need Immediate Review

PCPJack Shows Cloud Malware Is Moving From Cryptomining to Credential Theft

Hackers Modifying Registry Keys to Establish Persistence via Scheduled Tasks

Tackling Anti-Analysis Techniques of GuLoader and RedLine Stealer

Hackers target Apache RocketMQ servers vulnerable to RCE attacks

North Korea Debuts ‘SpectralBlur’ Malware Amid macOS Onslaught

Iran’s APT33 targets US defense contractors with novel malware

100 Days of YARA – 2023

Hide and Seek in Windows’ Closet: Unmasking the WinSxS Hijacking Hideout

Russia-linked APT Sandworm was inside Ukraine telecoms giant Kyivstar for months