Kimsuky strikes again – New social engineering campaign aims to steal credentials and gather strategic intelligence
In collaboration with NK News, a leading subscription-based service that provides news and analyses about North Korea, SentinelLabs has been tracking a targeted social engineering campaign against experts in North…
SentinelOne tracks Pakistan-aligned threat actor Transparent Tribe targeting education
SentinelLabs has been tracking a recently disclosed cluster of malicious Office documents that distribute the Crimson RAT used by the APT36 group (also known as Transparent Tribe) targeting the education…
SentinelOne analysed AlienFox – New toolset for harvesting cloud services credentials
SentinelLabs analysed several iterations of “AlienFox,” a new toolset identified to target credentials for multiple cloud email services. AlienFox is highly modular and evolves regularly. Most of the tools are…
Operation Tainted Love – Chinese APTs target telcos in new attacks
In collaboration with QGroup GmbH, SentinelLabs recently observed initial threat activities targeting the telecommunication sector. It is highly likely that these attacks were conducted by a Chinese cyber espionage actor…