Identity Reveal: The Threat Actor Behind ONNX Store and Caffeine Phishing Kit
On June 18th, we observed a lot of security news about “ONNX phishing-as-a-service (PhaaS),” a...
Read MoreInvestigation Report: 105K User Data Breach at Egyptian E-Commerce Website
On 13th April 2024, a threat actor named “BIGBlack” Posted a thread on a Darkweb forum titled...
Read MoreIn-Depth Technical Analysis of Nightingale Stealer
Around 15th December, a threat actor appeared on multiple forums advertising their stealer,...
Read MoreIn-Depth Technical Analysis of SEIDR Stealer
On December 28, a new info-stealer called SEIDR Information Stealer appeared on an underground...
Read MoreDelivering Trojans Via ClickFix Captcha
Overview Recently, a new social engineering technique has emerged, rapidly gaining traction as a...
Read MoreIdentity Reveal: The Threat Actor Behind ZATCA SAUDI ARABIA Leaks
On May 11, 2024, we observed numerous security reports about ZATCA Saudi Arabia access being...
Read MoreHelldown Ransomware Analysis
Introduction Helldown ransomware, first identified in August 2024, is a recent addition to the...
Read MoreFog Ransomware – Technical Analysis
what is Fog ? In June [Arctic Wolf Labs] reported a deployment of a new ransomware named Fog...
Read MoreSidewinder APT – Phishing on Pakistan
Introduction On July 30th, [StrikeReady Labs] reported the discovery of a malicious **LNK** file....
Read MoreMedusa Ransomware Group’s OPSEC Failure: Infiltrating Their Cloud Storage
Dark Atlas Squad recently responded to a ransomware incident carried out by Medusa Ransomware...
Read MoreKimsuky APT: The TrollAgent Stealer Analysis
The Kimsuky APT is a North Korea-based cyber espionage group that has been operating since at least...
Read MoreIn-Depth Technical Analysis of NoEscape Ransomware
What is NoEscape Ransomware? NoEscape ransomware emerged in May 2023 as a financially motivated...
Read More