Tomiris backdoor linked to Nobelium

Tomiris backdoor linked to Nobelium

Researchers discovered new malware containing several attributes that potentially connect it to DarkHalo, the threat actor behind the Sunburst attack in connection with SolarWinds. The DarkHalo compromised a widely used…
Autodesk – Cyber espionage Victim

Autodesk – Cyber espionage Victim

Autodesk, an American software and security company, said in a recent filing to the U.S. Securities and Exchange Commission that hackers had targeted the firm with the Sunburst malicious software.…
RainDrop 💦 Another SolarWinds strain

RainDrop 💦 Another SolarWinds strain

Researchers traced another strain malware that used in SolarWinds Supply chain attack. The attackers also used another tool very similar to Teardrop for lateral movement and to deliver the same…
SunSpot 🌕 Malware

SunSpot 🌕 Malware

The threat group behind the attack on SolarWinds used a piece of malware named Sunspot to inject the previously analyzed Sunburst backdoor into the Orion product without being detected. SolarWinds…
Sunburst linked with Kazuar

Sunburst linked with Kazuar

Cybersecurity researchers, have found a potential connection between the backdoor used in the SolarWinds hack to a previously known malware strain, several features that overlap with another backdoor known as Kazuar, a .NET-based…
Golden SAML—>🪐🌪️

Golden SAML—>🪐🌪️

The recently disclosed compromise at SolarWinds and the subsequent targeting of numerous other organizations have focused attention on a dangerous Active Directory Federation Services (ADFS) bypass technique dubbed “Golden SAML,”…