Advanced Persistent Threat (APT)

Harvester APT Goes After IT & Government Entities in South Asia screenshot

Harvester APT Goes After IT & Government Entities in South Asia

The Harvester APT appears to be a newly identified cybercrime group. Their efforts are focused in South Asia, but the majority of their victims appear to be companies and entities situated in Afghanistan. Judging by... Read more

October 19, 2021
WildPressure APT Goes After Windows and macOS Systems with the Milum RAT screenshot

WildPressure APT Goes After Windows and macOS Systems with the Milum RAT

WildPressure is an Advanced Persistent Threat (APT) group, which was first analyzed after they unleashed the Milum RAT in March 2020. Nowadays, the group is back with a new attack campaign, which targets both Windows... Read more

July 8, 2021
Andariel Cybercriminal Group Targets South Korean Users screenshot

Andariel Cybercriminal Group Targets South Korean Users

In April 2021, cybersecurity experts identified a new email spam campaign, which targeted Korean users with the use of decoy documents that were laced with malicious scripts. The goal of the campaign was to deliver a... Read more

June 16, 2021
FamousSparrow APT Relies on SparrowDoor and the ProxyLogon Vulnerability screenshot

FamousSparrow APT Relies on SparrowDoor and the ProxyLogon Vulnerability

The hackers from the FamousSparrow APT are fairly new players in the cybercrime field. Their first campaigns were spotted in March 2021, when they were exploiting the ProxyLogon vulnerability in Microsoft Exchange... Read more

September 27, 2021
BackdoorDiplomacy Hacker Group Works with the Quarian and Turian Backdoors screenshot

BackdoorDiplomacy Hacker Group Works with the Quarian and Turian Backdoors

BackdoorDiplomacy is a cybercrime group, which has been utilizing a series of backdoors to infect Windows and Linux systems. The first backdoor Trojan they unleashed on the Internet is called Quarian, which was later... Read more

June 18, 2021
Gelsemium APT screenshot

Gelsemium APT

Gelsemium is an Advanced Persistent Threat (APT) group whose campaigns can be traced back to 2014. The criminals use a wide range of malware, including a custom-built implant called Gelsevirine. They have been behind... Read more

June 10, 2021
LuminousMoth APT Goes after Targets in the Philippines and Myanmar screenshot

LuminousMoth APT Goes after Targets in the Philippines and Myanmar

Cybersecurity experts have been tracking a new malware campaign, which targets users in Asia. So far, the criminals behind this operation have been relying on spearphishing emails exclusively. Their campaign has... Read more

July 15, 2021
Gold Winter Cybercrime Group screenshot

Gold Winter Cybercrime Group

The Hades Ransomware has been one of the mysterious threats of 2021 – it first popped up in December 2020, and it quickly made headlines because of the ludicrous amounts it requested from its victims. Typically,... Read more

June 18, 2021
Wizard Spider APT Hacker Group Proliferates Ransomware Attacks screenshot

Wizard Spider APT Hacker Group Proliferates Ransomware Attacks

Wizard Spider is a group of cybercrooks, or an advanced persistent threat (APT) group that has been on the radar of law enforcement for some time. Among law enforcement seeking the malicious activities of Wizard... Read more

May 28, 2021