Chinese APT Abuses VSCode to Target Government in Asia Executive SummaryUnit 42 researchers recently found that Stately Taurus abused the... 2024-9-7 06:0:58 | 阅读: 30 | 收藏 | Unit 42 - unit42.paloaltonetworks.com stately taurus attacker shadowpad cortex

Spoofed GlobalProtect Used to Deliver Unique WikiLoader Variant Executive SummaryThe Unit 42 Managed Threat Hunting team (MTH) identified a varian... 2024-9-2 18:0:38 | 阅读: 24 | 收藏 | Unit 42 - unit42.paloaltonetworks.com wikiloader shellcode security

TLD Tracker: Exploring Newly Released Top-Level Domains Executive SummaryWe investigated 19 new top-level domains (TLDs) released in the p... 2024-8-30 18:0:28 | 阅读: 17 | 收藏 | Unit 42 - unit42.paloaltonetworks.com tlds tld malicious unblockit

The Emerging Dynamics of Deepfake Scam Campaigns on the Web Executive SummaryOur researchers discovered dozens of scam campaigns using deepfak... 2024-8-29 18:0:23 | 阅读: 19 | 收藏 | Unit 42 - unit42.paloaltonetworks.com shop deepfake hxxps mp4 cloud

Bling Libra’s Tactical Evolution: The Threat Actor Group Behind ShinyHunters Ransomware Executive SummaryIn an incident response engagement handled by Unit 42, the threat... 2024-8-23 18:0:21 | 阅读: 22 | 收藏 | Unit 42 - unit42.paloaltonetworks.com cloud buckets winscp cloudtrail security

Autoencoder Is All You Need: Profiling and Detecting Malicious DNS Traffic Executive SummaryTo improve our detection of suspicious network activity, we lever... 2024-8-21 18:0:1 | 阅读: 30 | 收藏 | Unit 42 - unit42.paloaltonetworks.com malicious network ddns c2 autoencoder

Leaked Environment Variables Allow Large-Scale Extortion Operation of Cloud Environments Unit 42 researchers found an extortion campaign's cloud operation that successfull... 2024-8-15 18:0:9 | 阅读: 35 | 收藏 | Unit 42 - unit42.paloaltonetworks.com cloud malicious security attackers victim

Unit 42 Attack Surface Threat Research: Over 23% of Internet-Connected Exposures Involve Critical IT and Security Infrastructure IntroductionOur latest Unit 42 Attack Surface Threat Report explores the attack su... 2024-8-14 21:0:37 | 阅读: 13 | 收藏 | Unit 42 - unit42.paloaltonetworks.com industries security palo exposures

ArtiPACKED: Hacking Giants Through a Race Condition in GitHub Actions Artifacts Executive SummaryThis research reviews an attack vector allowing the compromise of... 2024-8-13 18:0:36 | 阅读: 16 | 收藏 | Unit 42 - unit42.paloaltonetworks.com github artifacts artifact repository malicious

Harnessing LLMs for Automating BOLA Detection Executive SummaryThis post presents our research on a methodology we call BOLABust... 2024-8-13 04:0:54 | 阅读: 56 | 收藏 | Unit 42 - unit42.paloaltonetworks.com bola bolabuster pve bolas

Fighting Ursa Luring Targets With Car for Sale This post is also available in: 日本語 (Japanese)Executive SummaryA Russian thre... 2024-8-2 18:0:45 | 阅读: 8 | 收藏 | Unit 42 - unit42.paloaltonetworks.com ursa fighting webhook sale malicious

Identifying a BOLA Vulnerability in Harbor, a Cloud-Native Container Registry Executive SummaryIn a recent audit of open-source web applications, threat researc... 2024-8-1 03:0:54 | 阅读: 22 | 收藏 | Unit 42 - unit42.paloaltonetworks.com harbor bola maintainer

Scam Attacks Taking Advantage of the Popularity of the Generative AI Wave This post is also available in: 日本語 (Japanese)Executive SummaryIn this post,... 2024-7-26 18:0:11 | 阅读: 19 | 收藏 | Unit 42 - unit42.paloaltonetworks.com genai chatgpt gemini network gpt

AI Tool Identifies BOLA Vulnerabilities in Easy!Appointments This post is also available in: 日本語 (Japanese)Executive SummaryPalo Alto Netw... 2024-7-25 18:0:55 | 阅读: 61 | 收藏 | Unit 42 - unit42.paloaltonetworks.com bola privileged appointment

Accelerating Analysis When It Matters Executive SummaryIn this post, we share information about how security professiona... 2024-7-24 18:0:0 | 阅读: 19 | 收藏 | Unit 42 - unit42.paloaltonetworks.com stealer analysis c2 pw mce

Vulnerabilities in LangChain Gen AI This post is also available in: 日本語 (Japanese)Executive SummaryResearchers fr... 2024-7-23 18:0:19 | 阅读: 63 | 收藏 | Unit 42 - unit42.paloaltonetworks.com langchain sitemap security python

From RA Group to RA World: Evolution of a Ransomware Group This post is also available in: 日本語 (Japanese)Executive SummaryThe ransomware... 2024-7-22 18:0:51 | 阅读: 94 | 收藏 | Unit 42 - unit42.paloaltonetworks.com ra ransomware cortex windows starlight

Container Breakouts: Escape Techniques in Cloud Environments This post is also available in: 日本語 (Japanese)Executive SummaryThis article r... 2024-7-18 18:0:41 | 阅读: 19 | 收藏 | Unit 42 - unit42.paloaltonetworks.com containers attacker kubernetes cortex privileges

Beware of BadPack: One Weird Trick Being Used Against Android Devices Executive SummaryThis article discusses recent samples of BadPack Android malware... 2024-7-16 18:0:48 | 阅读: 12 | 收藏 | Unit 42 - unit42.paloaltonetworks.com apk badpack analysis

DarkGate: Dancing the Samba With Alluring Excel Files Executive SummaryThis article reviews a DarkGate malware campaign from March-April... 2024-7-11 03:0:54 | 阅读: 18 | 收藏 | Unit 42 - unit42.paloaltonetworks.com darkgate xlsx analysis c2 powershell