CYFIRMA Research: OSINT Investigation- Hunting Malicious Infrastructure Linked To Transparent Tribe CYFIRMA Research podcast

Artwork

News Tech News Threat Intelligence Cybersecurity Threat Actor Cyber Awareness Malware Ransomware CYFIRMA External Threat Landscape CTI Cyber News Vulnerable Cyber Threats

Contenuto fornito da CYFIRMA. Tutti i contenuti dei podcast, inclusi episodi, grafica e descrizioni dei podcast, vengono caricati e forniti direttamente da CYFIRMA o dal partner della piattaforma podcast. Se ritieni che qualcuno stia utilizzando la tua opera protetta da copyright senza la tua autorizzazione, puoi seguire la procedura descritta qui https://it.player.fm/legal.

CYFIRMA Research « »
CYFIRMA Research: OSINT Investigation- Hunting Malicious Infrastructure Linked to Transparent Tribe

26d ago 5:19

Condividi

MP3•Pagina principale dell'episodio

Contenuto fornito da CYFIRMA. Tutti i contenuti dei podcast, inclusi episodi, grafica e descrizioni dei podcast, vengono caricati e forniti direttamente da CYFIRMA o dal partner della piattaforma podcast. Se ritieni che qualcuno stia utilizzando la tua opera protetta da copyright senza la tua autorizzazione, puoi seguire la procedura descritta qui https://it.player.fm/legal.

CYFIRMA's latest report delves into a crucial investigation targeting the malicious infrastructure linked to the APT group "Transparent Tribe." Employing open-source intelligence (OSINT), we thoroughly tracked the command-and-control (C2) servers utilized by this persistent threat actor. By leveraging advanced techniques such as JARM fingerprinting, we identified a network of 15 servers hosted by DigitalOcean, primarily aimed at malicious activities against individuals in India, reflecting the group's historical focus on Indian government sectors.
This investigation reveals the group's innovative use of Linux desktop entry files as attack vectors, highlighting their continuous adaptation in the dynamic cyber landscape. Additionally, the report details their evolving tactics, including the deployment of Mythic Poseidon binaries as malicious payloads, underscoring the sophistication of this threat.
Link to the Research Report: OSINT Investigation: Hunting Malicious Infrastructure Linked to Transparent Tribe - CYFIRMA
#CyberThreat #OSINT #TransparentTribe #APT36 #CyfirmaResearch #MaliciousInfrastructure #ExternalThreatLandscapeManagement #ETLM #CYFIRMA #CyfirmaResearch

https://www.cyfirma.com/

… continue reading

159 episodi

#News #Tech News #Threat Intelligence #Cybersecurity #Threat Actor #Cyber Awareness #Malware #Ransomware #CYFIRMA #External Threat Landscape #CTI #Cyber News #Vulnerable #Cyber Threats

Artwork

CYFIRMA Research: OSINT Investigation- Hunting Malicious Infrastructure Linked to Transparent Tribe

CYFIRMA Research

published 26d ago

Condividi

MP3•Pagina principale dell'episodio

Contenuto fornito da CYFIRMA. Tutti i contenuti dei podcast, inclusi episodi, grafica e descrizioni dei podcast, vengono caricati e forniti direttamente da CYFIRMA o dal partner della piattaforma podcast. Se ritieni che qualcuno stia utilizzando la tua opera protetta da copyright senza la tua autorizzazione, puoi seguire la procedura descritta qui https://it.player.fm/legal.

CYFIRMA's latest report delves into a crucial investigation targeting the malicious infrastructure linked to the APT group "Transparent Tribe." Employing open-source intelligence (OSINT), we thoroughly tracked the command-and-control (C2) servers utilized by this persistent threat actor. By leveraging advanced techniques such as JARM fingerprinting, we identified a network of 15 servers hosted by DigitalOcean, primarily aimed at malicious activities against individuals in India, reflecting the group's historical focus on Indian government sectors.
This investigation reveals the group's innovative use of Linux desktop entry files as attack vectors, highlighting their continuous adaptation in the dynamic cyber landscape. Additionally, the report details their evolving tactics, including the deployment of Mythic Poseidon binaries as malicious payloads, underscoring the sophistication of this threat.
Link to the Research Report: OSINT Investigation: Hunting Malicious Infrastructure Linked to Transparent Tribe - CYFIRMA
#CyberThreat #OSINT #TransparentTribe #APT36 #CyfirmaResearch #MaliciousInfrastructure #ExternalThreatLandscapeManagement #ETLM #CYFIRMA #CyfirmaResearch

https://www.cyfirma.com/

… continue reading

159 episodi

#News #Tech News #Threat Intelligence #Cybersecurity #Threat Actor #Cyber Awareness #Malware #Ransomware #CYFIRMA #External Threat Landscape #CTI #Cyber News #Vulnerable #Cyber Threats

Tutti gli episodi

×

Benvenuto su Player FM!

Player FM ricerca sul web podcast di alta qualità che tu possa goderti adesso. È la migliore app di podcast e funziona su Android, iPhone e web. Registrati per sincronizzare le iscrizioni su tutti i tuoi dispositivi.

Ascolta più di 500 argomenti