The Cluster25 Blog
North Korean Group “KONNI” Targets the Russian Diplomatic Sector with new Versions of Malware Implants
North Korean Group “KONNI” Targets the Russian Diplomatic Sector with new Versions of Malware Implants
January 3, 2022Cluster25 analyzed a recent attack linked to the North Korean APT group “Konni” targeting Russian diplomatic sector usin...
Dharma/Crysis: Overview and Adversary Tracking
Dharma/Crysis: Overview and Adversary Tracking
September 17, 2021Dharma, a family of ransomware first spotted in 2016, is a malicious program that encrypts a victim’s files and takes as...
A RattleSnake in the Navy
A RattleSnake in the Navy
September 10, 2021Recent geopolitical events are leading to an increase in cyber operations in the Central Asian region. Among the actors ...
A not so Fancy game. Exploring the new “SkinnyBoy” Bear’s backdoor
A not so Fancy game. Exploring the new “SkinnyBoy” Bear’s backdoor
June 3, 2021This paper presents an analysis of a new and never publicly reported malware internally dubbed as SkinnyBoy. Based on lo...
Subscribe to get latest posts straight to your inbox 👇
Categories
Popular Posts
In the footsteps of the Fancy Bea...
September 23, 2022
The Fraud Gala: Exploring a Recen...
August 25, 2023
Back in Black: BlackByte Ransomwa...
May 22, 2023