Threat Detection Report: Introduction
Our Threat Detection Report takes a close look at the most prevalent techniques & threats to help security teams focus on what matters most.
Threat Reports
LOWKEY: Hunting for the Missing Volume Serial ID | Mandiant
A Summary of APT41 Targeting U.S. State Governments
APT41’s persistent effort allowed them to successfully compromise at least six U.S. state government networks.
MITRE ATT&CK®
Ugg Boots 4 Sale: A Tale of Palestinian-Aligned Espionage | Proofpoint US
Log4j2 In The Wild | Iranian-Aligned Threat Actor "TunnelVision" Actively Exploiting VMware Horizon
Threat actor exploits Log4j2 vulnerabilities to drop PowerShell backdoors, harvest credentials, and communicate via legitimate services.
Operation Bleeding Bear - Elastic Security Research
Elastic Security verifies new destructive malware targeting Ukraine: Operation Bleeding Bear
StellarParticle Campaign: Novel Tactics and Techniques | CrowdStrike
This blog discusses the StellarParticle campaign and the novel tactics and techniques used in supply chain attacks observed by CrowdStrike incident responders.