Sekoia.io @sekoia_io
A #SOCplatform driven by #threatintelligence and combining #SIEM, #SIRP, #TIP, #logmanagement in a single solution. Used by End-users, MSSP and APIs sekoia.io Paris, France Joined September 2017-
Tweets687
-
Followers3K
-
Following147
-
Likes298
🔍Discover how to proactively detect malicious activities with Censys data in our next webinar with @sekoia_io. Explore challenges in monitoring decentralized infrastructures and see MalleableC2 in action📈Book your spot now: go.censys.com/April-Lunch-an…
Our latest blog post provides an introduction to #AWS detection engineering. We present the main log sources #CloudTrail #FlowLogs #GuardDuty for AWS, as well as some relevant events that defenders could use to detect attackers blog.sekoia.io/aws-detection-…
Hello Twitter ! Aujourd'hui je suis à la #CoRIIN2024 (@cecyf_coriin) ! Je vous propose une fois de plus de suivre cette journée de conf avec moi :)
Happy to share this deep-dive research on #ResidentialProxies! Shoutout to @MaelSarp @liviatibirna @ncaproni and all the other fantastic brains behind this #CTI report. 📑🕵️
Happy to share this deep-dive research on #ResidentialProxies! Shoutout to @MaelSarp @liviatibirna @ncaproni and all the other fantastic brains behind this #CTI report. 📑🕵️
🤝For the last months, our World Watch team collaborated with @sekoia_io TDR team to investigate and demystify Residential Proxies #RESIP and highlight their systemic growth and the transparency issues surrounding their sourcing ⤵️ orangecyberdefense.com/global/blog/re… #cti @orangecyberdef
Florian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Michael Koczwara @MichalKoczwara
18K Followers 2K Following Founder @Intel_Ops_io Threat Intelligence, Adversary Infrastructure Hunting, Curated TI Feed (Coming Soon) https://t.co/vixTz8xKuF https://t.co/VQWaze6gaFWill @BushidoToken
29K Followers 3K Following Threat Intel & Hunting @Equinix | Co-founder @CuratedIntel | Co-author @SANSForensics FOR589 | @darknetdiaries #126: REvilThomas Roccia 🤘 @fr0gger_
25K Followers 2K Following Sr. Threat Researcher @Microsoft, Malware Warlock, Threat Intel, Python🧡- Former @McAfee_labs, Goon @Defcon, Creator of #UnprotectProject - Tweets are my ownFélix Aimé @felixaime
6K Followers 2K Following Threat Intelligence stakhanovite ⛏️ and proud dad. Former @Kaspersky & @CERT_FR. Now state-sponsored threats CTI lead at @sekoia_io.Katie Nickels @likethecoins
54K Followers 3K Following Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]crep1x @crep1x
2K Followers 292 Following Lead cybercrime analyst, tracking adversaries activities & infrastructure, at @sekoia_ioMatthew @embee_research
12K Followers 1K Following Malware Researcher & Reverse Engineer | Creating and Sharing Educational Cyber ContentClandestine @akaclandestine
35K Followers 5K Following | Security | Osint | Threat Research | Opsec | Threat Intelligence | Infosec | Threat Hunting |Virus Bulletin @virusbtn
59K Followers 1K Following Security information portal, testing and certification body. Organisers of the annual Virus Bulletin conference. @[email protected]TEAM CYMRU - Threat R.. @teamcymru_S2
4K Followers 87 Following Follow us for the latest blogs and IOCs from the Team Cymru Threat Research Team (@teamcymru) @[email protected]Igal Lytzki🇮🇱 @0xToxin
9K Followers 283 Following Security Researcher at @Microsoft | Ex - Perception Point Threat Analyst & Team LeadJazi @h2jazi
7K Followers 522 Following Threat Intel researcher! Technical tweets only; not reflective of employer's views. No endorsement of political groups/entities.CyberKnow @Cyberknow20
30K Followers 3K Following Situational Awareness | Threat Intelligence | #cybertracker | Hacktivist tracker | Meme Farmer 🇦🇺🇦🇺 Posts and Opinions are my ownNicolas Caproni @ncaproni
8K Followers 4K Following Head of @sekoia_io Threat & Detection Research (TDR) Team #SOCplatform #XDR #SIEM #CTI #TIPR. @0xrb
5K Followers 1K Following Reverse Threat Intel | Malware /Threat Hunter | Exploit Research \\ #IoT #Malware #Research, Reverse Engineering, #Botnet C2 #Hijackinggolem pich @PichGolem
1 Followers 13 Following🄲🅈🄱🄴🅁 .. @Cyber_Asia_
3K Followers 349 Following Follow us for the latest #cybersecurity news in Asia Pacific.Thanks Always @iTimonPumbaa
2 Followers 368 FollowingAbdullah Mahmoud @ax_zer0
1 Followers 84 FollowingIT-ISAC @ITISAC
2K Followers 559 Following The IT-ISAC is a non-profit corporation formed by IT companies as a specialized forum for managing risks to their corporations and the IT infrastructure.[email protected] @memoria_jls
0 Followers 107 Followingsink0Rswim @laceandload
117 Followers 2K FollowingRandy Ardilla @RndiArd
163 Followers 885 Following Network security engineer, CCNP Enterprise, PCNSE, CCSA, NSE5tsec @tsec482983
0 Followers 12 FollowingGoldfish 🟠 @Gold_Phishy
3K Followers 4K Following Goldphishy.sol / Goldphishy.eth | Cyber Security Analyst | Hibernian fan | Degen Jpeg collector | GoldFish | #ETH | #Solana | #BTC | #Crypto | #NFTPrzemyslaw Cychosz @PCychosz
29 Followers 308 Following Dr nauk prawnych (PhD), prokurator, karate tradycyjne, TRI-1/4IM, Pomorze- Krakówمیناکشسندر�.. @kaalam
157 Followers 782 FollowingS⃣ A⃣ S⃣ A⃣ @gorimpthon
2K Followers 799 Following Sr. Cybersecurity Researcher | CSIRT | ばらまきメール回収の会 @retrieve_member | Mal-Eats @mal_eats | CISSP GCFA GCFR GREM GCIH GCIA | Opinions are my own.A3391gent @a3391gent
1 Followers 99 FollowingMustafa @mtcybersec110
142 Followers 2K Following Cyber security , Penetration Tester , ISO 27001 IEC:2013 IRCA Lead AuditorAdvik @Ad_vi_k
50 Followers 2K FollowingEbrahem Hegazy 🇵�.. @Zigoo0
28K Followers 902 Following Founder of @DarkEntryAMS. Vulnerabilities Hunter since 2013. ex Sr. Manager at Visa Inc, HackerOne, Deloitte, QCERT and EGCERT. Tweets are my own.steve r @pidooma
417 Followers 1K Following network engineer and dabbler in photography IG: https://t.co/yQAJPrKqCZ Flickr: https://t.co/iK6jNhHnjK Mastodon: https://t.co/8jVprZtF9Tthatguy @thatguysaidmate
168 Followers 1K FollowingEscanor @escanor_rhitta
31 Followers 394 FollowingLove Is Kind #cryptom.. @LucrativeCrypto
446 Followers 1K Following Always find opportunities to make someone smile, and to offer random acts of kindness in everyday life!BlueEye @BlueEye46572843
180 Followers 547 Following Open to immediate work,reverse engineer & malware researcher who is interested in #APT research and targeted #malware.Views are my own.C:\maythe4thbewithyou.. @EdavPerez
4K Followers 2K Following Padawan🥷| Intel Ops🔎| Todos los sistemas son vulnerables (People2)🖥️🤯🔨| Nunca no tengo hambre | A veces hago gin🍸Andrea Consadori @consadori
150 Followers 1K Following open source believer, graylog + zabbix + otrs is the perfect mixsbt @sbt_lu
43 Followers 224 FollowingCyOps @_CYOPS
897 Followers 4K Following Strongly focused on security landscape, intelligence and geopolitics. Supporter of objective news and tackling injustice.Julien Bastiani @JulienBast81098
348 Followers 2K FollowingKevin Cryan @kcryan
18 Followers 14 Followingz0rr0x @z0rr0x158782
8 Followers 31 FollowingMarie Williams @Marie26Williams
1 Followers 95 Followingfinansfinansfinans @finansfinans1
8 Followers 183 FollowingLaurent DV @laurentdv
378 Followers 512 FollowingCrow @CrowTheDefender
5 Followers 104 FollowingChris @cbecks_2
744 Followers 2K Following Infosec and the Green Bay Packers. Interested in all things DFIR, Detection Engineering, Purple, and CTI. Opinions are mine, certainly not those of my employer.Melat Heguia @melatheguia
0 Followers 298 FollowingMoeSec @MoeSecCom
6 Followers 226 Following Website Hack Repair, Malware & Blacklist removal services. Website Firewall Protection Digital Forensics Vulnerability Assessment & Penetration TestingAmelie Deltombe @ameliedeltombe
186 Followers 3K FollowingTI_kyoutu @AKyoutu
0 Followers 225 Followingsylvio @sylvio12174662
12 Followers 39 Following Cyber threat intelligence analyst @GlimpsRE (binary analysis automation through ML code correlation)hex @hexsoap
31 Followers 431 FollowingMalia Balasco @balasc_ma
81 Followers 5K Followingvx-underground @vxunderground
291K Followers 210 Following The largest collection of malware source code, samples, and papers on the internet. Password: infectedFlorian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Michael Koczwara @MichalKoczwara
18K Followers 2K Following Founder @Intel_Ops_io Threat Intelligence, Adversary Infrastructure Hunting, Curated TI Feed (Coming Soon) https://t.co/vixTz8xKuF https://t.co/VQWaze6gaFWill @BushidoToken
29K Followers 3K Following Threat Intel & Hunting @Equinix | Co-founder @CuratedIntel | Co-author @SANSForensics FOR589 | @darknetdiaries #126: REvilUnit 42 @Unit42_Intel
51K Followers 88 Following The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.Thomas Roccia 🤘 @fr0gger_
25K Followers 2K Following Sr. Threat Researcher @Microsoft, Malware Warlock, Threat Intel, Python🧡- Former @McAfee_labs, Goon @Defcon, Creator of #UnprotectProject - Tweets are my ownGermán Fernández @1ZRR4H
29K Followers 576 Following 🏴☠️ OFFENSIVE-INTEL 🏴☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱ESET Research @ESETresearch
32K Followers 30 Following Security research and breaking news straight from ESET Research Labs.Félix Aimé @felixaime
6K Followers 2K Following Threat Intelligence stakhanovite ⛏️ and proud dad. Former @Kaspersky & @CERT_FR. Now state-sponsored threats CTI lead at @sekoia_io.ςεяβεяμs - м�.. @c3rb3ru5d3d53c
21K Followers 235 Following 💕 Malware Hunter Killer 💕 #binlex & #mwcfg Developer 📽️ YouTuber 👩💻 She/Her 💍@DravenSwiftbow Support my work 👇 ☕️ https://t.co/SfTI8uJa23Katie Nickels @likethecoins
54K Followers 3K Following Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]BleepingComputer @BleepinComputer
212K Followers 175 Following Breaking cybersecurity and technology news, guides, and tutorials that help you get the most from your computer. DMs are open, so send us those tips!crep1x @crep1x
2K Followers 292 Following Lead cybercrime analyst, tracking adversaries activities & infrastructure, at @sekoia_ioCatalin Cimpanu @campuscodi
112K Followers 1K Following Parked account. I don't post here anymore. Follow me on Mastodon: @[email protected]Virus Bulletin @virusbtn
59K Followers 1K Following Security information portal, testing and certification body. Organisers of the annual Virus Bulletin conference. @[email protected]The DFIR Report @TheDFIRReport
53K Followers 0 Following Real Intrusions by Real Attackers, the Truth Behind the Intrusion. Services: https://t.co/XW613EKt2wIgal Lytzki🇮🇱 @0xToxin
9K Followers 283 Following Security Researcher at @Microsoft | Ex - Perception Point Threat Analyst & Team LeadNicolas Caproni @ncaproni
8K Followers 4K Following Head of @sekoia_io Threat & Detection Research (TDR) Team #SOCplatform #XDR #SIEM #CTI #TIPx0rz @x0rz
98K Followers 422 Following Cybersecurity & Threat Intelligence. Knowledge is power, France is bacon 🥓JAMESWT @JAMESWT_MHT
35K Followers 418 Following #Independent #Malware #Hunter #CyberSecurity #InfoSec https://t.co/KCFBJcHHcWCurated Intelligence @CuratedIntel
13K Followers 108 Following Bringing together intelligence researchers and incident responders. #TrackThePlanetKevin Poireault @kpoireault
2K Followers 2K Following 🇬🇧 Reporter @InfosecurityMag 🇫🇷 Co-👶 @TeknolojiaNews • 👶 @Coupe_Circuit #cybersecurity #internetmonitoring #digitalrights | 🌍 ⚽🥊Lorraine D @lorraine_dfgs
300 Followers 666 Following Un peu de politique, beaucoup d’Europe 🇪🇺 | Passionnée par les questions cyber 👾 | Quelque part entre Paris-Bruxelles-Rennes 🚅 |Mark O'Neill @marxculture
7K Followers 3K Following Ursine Plenipotentiary. Official sponsor of the “🐻” emoji. Aire échta for hire. Join a union!Tom Hegel @TomHegel
6K Followers 691 Following Information Security Research, Threat Intelligence, Adversary Analysis. Principal Threat Researcher with SentinelLabs / @SentinelOnedns0.eu @dns0eu
2K Followers 24 Following The 🇪🇺 European public DNS that makes your Internet safer.Bright Pixel (former .. @brpxcapital
905 Followers 234 Following A venture capital company making businesses prosper in our DNA sectors: Cybersecurity, Retail Technologies, Digital Infrastructure and Emerging Technologies.Open Cybersecurity Al.. @OpenCyberAllnc
875 Followers 663 Following A global alliance to connect the fragmented #cybersecurity landscape with common, #opensource code and practices.John Fokker @John_Fokker
3K Followers 687 Following Head of Threat Intelligence @TrellixArc➖ Former @McAfee, @politiethtc & @korpsmariniers ➖ Likes lifting heavy stuff fast➖ Opinions are my own.CEFCYS @CEFCYS_Officiel
2K Followers 231 Following Cercle des #Femmes de la #CyberSécurité #Cefcys Sensibilisation #Education Valorisation des talents #Leadership #WomenInTechgregclermont @gregclermont
398 Followers 1K Following Cybercrime threat intel and detection shenanigans at https://t.co/D9ptVmYpGEBohan Zhang @bohansec
2K Followers 4K Following Threat Intelligence Analyst @esthreat 🚀🚀| Blue TeamerLyn @Lucifer_UD
146 Followers 787 Following Threat Intel researcher、Threat Analysis、Vul&Mal research、 Special interest in tracking APTs. SoC&SIEM interesters.GzobraJn @gzobraJn
38 Followers 351 Following World of today, sciences and people. DFIR / Threat Intel on a daily basis. Music and books as often as possible. Opinions are my own. RTs are not endorsements.Peter Kruse | Cybercr.. @peterkruse
14K Followers 859 Following Peter Kruse is a cybersecurity researcher. Co-founder of CSIS Security Group, Kruse Industries, SIE-Europe & Heimdal. CARO member. CISO at Clever.Berk Albayrak @brkalbyrk7
981 Followers 1K Following Threat Research Team Lead @malwation | TI | OSINT | TA2AQX 📡billy leonard @billyleonard
4K Followers 635 Following pogue life. @Google TAG, Global Head of Analysis of State Sponsored Hacking And Threats.Chris Bing @Bing_Chris
35K Followers 10K Following @Reuters reporter. Covers hacking + foreign affairs. @SAISHopkins student.📧: [email protected] I☎️Signal: 2O2-51O-O174. More contact info: https://t.co/FnTdrahhi0Mathieu Feuillet @MathieuFeuillet
862 Followers 265 Following Head of @CERT_FR Head of Operations @ANSSI_FR For contacting CERT-FR, do not send me DMs but check : https://t.co/0pNcJJ6rdWMarine Pichon @Mar_Pich
1K Followers 142 Following Threat Intelligence analyst @CERTCyberdef |@PSIASciencesPo | @SCAsciencespoLe Reun Charles @le_reun
125 Followers 263 Following Head of Product Expertise & Support at https://t.co/Q8QObkbisM XDR & CTI | AI & Data enthusiastic | eSport Fan || Personnal account / Tweets are my ownCrowdSec @Crowd_Security
20K Followers 1K Following CrowdSec is a CTI tool leveraging crowdsourced data to identify and block malevolent IPs in real time worldwide. Join our Discord: https://t.co/iboAbgMP6xPatrick Wardle @patrickwardle
37K Followers 959 Following Founder of the Objective-See Foundation 🛠️🍎NoiseTotal @NoiseTotal
112 Followers 90 Following The opposite of VirusTotal - Collective Intelligence on False Positives Provided by DTonomy https://t.co/QVjS6ZVJxIAJ Vicens || @ajvicen.. @AJVicens
11K Followers 10K Following Senior Reporter, cybercrime, state-aligned threats @CyberScoopNews. Was @MotherJones, @UMKnightWallace Signal: ajvicens.57 (more: https://t.co/VC3mfeOaua)Joe Roosen @JRoosen
8K Followers 1K Following SpyCloud - Security Research Manager, Cryptolaemus Coordinator, Emotet(Ivan)/QBot(Boris) hater, gold prospector & former sysadmin.John F - infosec.exch.. @Abjuri5t
709 Followers 389 Following Network Defender && #C2 Researcher Lead dev @SarlackLab Protecting people in the nerdiest of ways 🛡🧙♂️ views are mineArda Büyükkaya @WhichbufferArda
2K Followers 936 Following Cyber Threat Intelligence Analyst @EclecticIQ | Threat Hunter | Malware Analyst |. (All opinions expressed here are mine only). 🇹🇷🇳🇱Douglas Mun @douglasmun
5K Followers 1K Following Group CISO | DPO | fmr led National Cyber Incident Response TeamCyber Space @cyberg0100
1K Followers 5K Following Cybersec | Infosec | OSINT | ThreatIntel | #unpatched log4j | retweet & fav != endorsement | CyberFlag{Y0uC4m3T0Th3R1ghtPl4c3} | advanced persistent stalkerrBartek Jerzman @secman_pl
2K Followers 3K Following Hunting ghosts in wires and boxes, former NCSC-PL, PL Navy #fightingthreatsQuack @_Quack1
451 Followers 202 FollowingRick Holland @rickhholland
9K Followers 2K Following @Reliaquest | CISO | x @digitalshadows | x @Forrester | x @USArmy intel #CyberSecurity | #InfoSec |#ThreatIntel | #BBQ | #Converse | Public speakerJoe Słowik 🌻 @jfslowik
29K Followers 1K Following CTI, OT/ICS, DE&TH, and related infosec content. Oh, and memes. And shitposting. Lots of shitposting.Seb @ibizet_
66 Followers 198 Following Doing backend things @DeepkiSAS (prv @leboncoin @dailymotion) ❤️ SSI OWI/CMAS DI** 🤿 #python #api #security #scubadiving #sharks ☝️ Tweets are my own 🇫🇷🇬🇧On our road to #botconf2024 with @charlesmeslay and @crep1x from @sekoia_io. Do not hesitate to ping us for some 🍻&🥃:)
🔍Discover how to proactively detect malicious activities with Censys data in our next webinar with @sekoia_io. Explore challenges in monitoring decentralized infrastructures and see MalleableC2 in action📈Book your spot now: go.censys.com/April-Lunch-an…
Apéro APT russes chez @sekoia_io 🍻 Stand A17 #ForumInCyber
Hello Twitter ! Aujourd'hui je suis à la #CoRIIN2024 (@cecyf_coriin) ! Je vous propose une fois de plus de suivre cette journée de conf avec moi :)
Here is our in-depth analysis of the prominent Tycoon 2FA phishing kit, sold under the PhaaS model since August 2023. 📈 Through the tracking opportunities shared in our blog post, we have observed a significant number of Tycoon 2FA phishing domains. x.com/sekoia_io/stat… ⬇️
We just released an analysis of the latest version of Tycoon 2FA Phishing-as-a-Service (#PhaaS), uncovered by the Sekoia TDR team in October 2023. #Tycoon 2FA remains one of the most prevalent Adversary-in-The-Middle (#AiTM) #phishing kits in early 2024. blog.sekoia.io/tycoon-2fa-an-…
🚨Understanding #RESIP is crucial for risk assessment and cybersecurity awareness. This joint report underscores the importance of recognizing and addressing the threats posed by the misuse of residential proxies in the cyber landscape.
A particularly malicious practice involves compromising devices and installing #proxyware on them. In these cases, the attackers infiltrate a victim’ systems without their consent and secretly install the software, making the device an unwitting exit point for the #RESIP network.
The market for #RESIP services is murky, with numerous dubious providers. Cyber threat actors not only abuse these services but in some cases, provide them, contributing to the cybercrime ecosystem's commodification.
#RESIP, while having legitimate uses, are often exploited by cybercriminals. These "rentable" IP addresses mask the user's location by routing traffic through residential devices, making malicious activities (from #DDoS to #phishing or #cyberespionage campaigns) harder to trace🧐
Happy to share this deep-dive research on #ResidentialProxies! Shoutout to @MaelSarp @liviatibirna @ncaproni and all the other fantastic brains behind this #CTI report. 📑🕵️
🤝For the last months, our World Watch team collaborated with @sekoia_io TDR team to investigate and demystify Residential Proxies #RESIP and highlight their systemic growth and the transparency issues surrounding their sourcing ⤵️ orangecyberdefense.com/global/blog/re… #cti @orangecyberdef
🤝For the last months, our World Watch team collaborated with @sekoia_io TDR team to investigate and demystify Residential Proxies #RESIP and highlight their systemic growth and the transparency issues surrounding their sourcing ⤵️ orangecyberdefense.com/global/blog/re… #cti @orangecyberdef
For those unfamiliar with the "crypter" threat and its use by cybercriminals, I invite you to read our analysis on the subjet! Crypters are essential for malware distribution. Excellent and comprehensive paper by @liviatibirna! ⬇️ x.com/sekoia_io/stat…
🗝️ Navigate the crypters ecosystem with our latest report! Our analysts detail the functioning of these widely used software and explain how attackers leverage crypters to deliver malicious payloads at scale. blog.sekoia.io/the-architects…
Last week @RecordedFuture @JulianVoeg and @felixaime @sekoia_io each separately published analyses on Intellexa's Predator spyware infrastructure, and how it had been rebuilt after last fall's Predator Files. This past weekend, the operators burned it again.
For the second time in six months, the operators of the Predator spyware burned down their infrastructure after it was publicly documented, @AJVicens reports. scoopmedia.co/3SWLJVk
Last week, we published a report describing the evolution and modus operandi of Scattered Spider. We compiled the public data on this intrusion set, and summarised TTPs used over time. We also shared exclusive insights into their latest phishing ops. ⬇️ x.com/sekoia_io/stat…
🕸️ The Sekoia TDR team delved into the intricate web of Scattered Spider’s activities. The group reflects a complex cybercrime ecosystem, overlapping with multiple other intrusion sets. blog.sekoia.io/scattered-spid… ⬇️
As usual, your feedback is greatly appreciated - as well as further intelligence about the modus operandi!
Smells like APT41
I won't talk about this in detail since it contains very sensitive details, but it's basically a bunch of sensitive call logs and call data specifically stolen from the affected telecommunication providers. The type of stuff that not even most workers normally have access to.
Very glad to share a part of our 2023 work, don't hesitate if you have any question
🕵️ 📡 We are pleased to announce our newest blog post about Sekoia #TDR team (Threat Detection & Research) #adversary #infrastructure tracking capabilities in 2023 ⤵️ blog.sekoia.io/adversary-c2-i…
@Gi7w0rm @sekoia_io @virusbtn We collect Redline C2 servers mainly by tracking samples and extracting their config. For this malware family, we are not able to track the active servers using a proactive heuristic! That's why Redline does not appear in this study - and this threat is still a thing...
Vous voulez un bilan de 2023 sur le front des #infostealer ? Cliquez ci-dessous. Avec de grands mercis 🙏 à @hudsonrockbot @RecordedFuture @sekoia_io (et un peu au #CERT @RENATER aussi 😉) lemagit.fr/actualites/366…
Don't miss our latest report and technical analysis of #DiceLoader aka #IceBot, a malware used by #FIN7. Thanks to @plebourhis, reverse engineer at @sekoia_io TDR team! blog.sekoia.io/unveiling-the-…