Alert: Sophisticated malware campaign targets industrial suppliers using fake Boeing RFQs. #CyberSecurity #Malware #Phishing #CobaltStrike Link: thedailytechfeed.com/malware-camp...

Chinesische APT-Gruppe Camaro Dragon nutzt Nahost-Konflikt für Malware-Kampagne gegen Katar aus

#backdoor #CamaroDragon #CheckPointSW #Cobaltstrike #Cybersicherheit #Katar #Malware #Nahost #PlugX #Spionage

netzpalaver.de/2026/...

Alert: Silver Dragon, linked to China's APT41, targets global governments using Cobalt Strike and Google Drive C2. Stay vigilant! #CyberSecurity #APT41 #SilverDragon #CobaltStrike #GoogleDriveC2 Link: thedailytechfeed.com/silver-drago...

Chinesische Cyberspionage-Gruppe Silver-Dragon hat Behörden in Europa und Asien im Visier

@CheckPointSW #CobaltStrike #Cyberangriff #Cybersicherheit #Cyberspionage #EMailSicherheit #GoogleDrive #Phishing #ServerExploit #Sicherheitsforensik #SilverDragon

netzpalaver.de/2026/...

UAT-10027 Leverages ‘Dohdoor’ Backdoor and Cobalt Strike Against US Education and Healthcare Threat actor UAT-10027 targets U.S. education and healthcare sectors using the Dohdoor backdoor and possibly Cobalt Strike.

Full report:
www.technadu.com/uat-10027-le...

Do you believe current DNS monitoring strategies are sufficient to detect DoH-based C2 activity? Comment your perspective below.
#CyberSecurity #ThreatIntel #HealthcareSecurity #EducationSecurity #APT #CobaltStrike #InfoSec

From COFF compilation to in-memory execution — understand what really happens inside a Beacon Object File. Tradecraft isn’t magic. It’s engineering.

🎯Read the blog now: cyberwarfare.live/the-anatomy-...

#Blog #OffensiveSecurity #AdversaryEmulation #CobaltStrike #CyberSecurity #CWL

NOTEPAD++ SUPPLY CHAIN ATTACK

Kaspersky: update mechanism compromised. Payload: Cobalt Strike.

We have 29 active C2 servers in our free STIX feed.

Block the beacons.

www.dugganusa.com/post/your-notepad-might-...

#SupplyChain #CobaltStrike

An otherwise convoluted Lotus Blossom infection chain leads to an otherwise unremarkable Cobalt Strike configuration:

www.rapid7.com/blog/post/tr-chrysalis-b...

#cobaltstrike #lotusblossom

GootLoader Bypasses Security With ZIPs
Read More: buff.ly/3Uc6emB

#GootLoader #Malware #InitialAccess #Ransomware #CobaltStrike #Rhysida #WindowsSecurity #ThreatHunting #EDR #MalwareAnalysis #CyberDefense

Some unusual #CobaltStrike activity we observed at Censys before the holiday. At the start of December, we saw a spike in CobaltStrike in AS138415 followed by a matching spike two days after on AS133199.

Report: censys.com/blog/recap-of-a-suspicio...

With Cobalt Strike's new REST API, bold experimentation isn't just allowed, it's encouraged! Our latest blog provides a few examples to help inspire users to explore the way that #CobaltStrike and the generative AI ecosystem can be intertwined.
https://www.cobaltstrike.com/blog/me-myself-and-ai

Operation FrostBeacon targets Russian financial and legal sectors with advanced Cobalt Strike malware. Stay vigilant against sophisticated phishing attacks. #CyberSecurity #MalwareAlert #CobaltStrike Link: thedailytechfeed.com/operation-fr...

Found multiple Cobalt Strike C2s by searching identical issuer_dn/subject_dn values (e.g., forged Gmail DN) in Censys; Malleable C2 profiles set CN/O/ST fields that map to those certs. #CobaltStrike #Censys #OSINT https://bit.ly/48UsVPA

Cobalt Strike 4.12 Video

Seeing is believing. Check out the video to see how version 4.12 makes #CobaltStrike sharper, smarter, and ready for the future. https://linoma.wistia.com/medias/9sku2eat6h

Cobalt Strike 4.12 is here! Experience a revamped UI, REST API support, custom C2 channels, advanced process injection, and more. Elevate your offensive security game! #CobaltStrike #CyberSecurity Link: thedailytechfeed.com/cobalt-strik...

Cobalt Strike 4.12 is here! Experience a revamped UI, REST API support, custom C2 channels, advanced process injection, and more. Elevate your offensive security game! #CobaltStrike #CyberSecurity Link: thedailytechfeed.com/cobalt-strik...

Chinese APT24 Cyberespionage Campaign Targets Taiwan with BADAUDIO Malware Google's Threat Intelligence Group details a 3-year PRC-nexus APT24 cyberespionage campaign using BADAUDIO malware and supply chain attacks.

Full story:
www.technadu.com/chinese-apt2...

Follow TechNadu for more intel.
#CyberEspionage #ChinaCyber #GTIG #SupplyChainAttack #Taiwan #CobaltStrike #Malware #ThreatIntel

GTIG reports a 3-year APT24 cyberespionage operation targeting Taiwan with the BADAUDIO loader.
• DLL hijacking + heavy obfuscation
• Supply chain compromise of a marketing firm (1,000+ domains)
• Secondary payload: Cobalt Strike Beacon

#SupplyChainAttack #Taiwan #CobaltStrike #Malware #ThreatIntel

Il gruppo cinese UAT-8099 sfrutta server IIS vulnerabili con SEO fraud, BadIIS e Cobalt Strike, colpendo aziende globali con furti credenziali e redirect fraudolenti.

#apt #BadIIS #cina #CobaltStrike #iis #SEO #SEOBadIIS #UAT8099
www.matricedigitale.it/2025/10/02/u...

中国黑客组织RedNovember利用Pantegana和Cobalt Strike恶意软件攻击全球政府
#中国 #中国黑客 #恶意软件 #网络安全 #CobaltStrike #Pantegana

Chinese Hackers RedNovember Target Global Governments Using Pantegana and Cobalt Strike private sector entities read more about Chinese Hackers RedNovember Target Global Governments Using Pantegana and Cobalt Strike

Chinese Hackers RedNovember Target Global Governments Using Pantegana and Cobalt Strike reconbee.com/chinese-hack...

#chinesehackers #hackers #RedNovemberhackers #governments #pantegana #cobaltstrike #cyberattack

RedNovember, gruppo cinese di cyber-spionaggio, sfrutta vulnerabilità edge per colpire governi, difesa e tecnologia in operazioni globali 2024-2025.

#cina #CobaltStrike #cyberspionaggio #difesa #governi #InsiktGroup #Pantegana #RedNovember #TAG100
www.matricedigitale.it/2025/09/25/r...

CountLoader, loader russo contro l’Ucraina: phishing, varianti .NET/PS/JS, C2 HTTP offuscato, persistenza e prep per ransomware in ambienti Windows.

#CobaltStrike #CountLoader #loader #Ransomware #SilentPush
www.matricedigitale.it/2025/09/19/c...

TA415, allineato alla Cina, usa phishing e KEYPLUG/Cobalt Strike per spionaggio economico USA-Cina: TTP, impatti e IOC secondo Proofpoint.

#apt #cina #CobaltStrike #KEYPLUG #phishing #proofpoint #TA415
www.matricedigitale.it/2025/09/17/t...

Villager, framework AI open source successore di Cobalt Strike: rilascio, architettura distribuita, integrazioni Kali e confronto tecnico.

#AI #CobaltStrike #Villagerframework
www.matricedigitale.it/2025/09/15/v...

Analyse der Time to Live von Bedrohungsinfrastrukturen

#AttackSurfaceManagement @censysio #CobaltStrike #Cybersecurity #Cybersicherheit #Security #ThreatHunting #ThreatIntelligence #Viper

netzpalaver.de/2025/...

Talos attribuisce a UAT-7237 attacchi al web hosting a Taiwan con SoundBill e Cobalt Strike; TTP e IOC mostrano una persistenza APT elevata.

#apt #cina #CobaltStrike #SoftEtherVPN #SoundBill #taiwan #UAT7237 #webhosting
www.matricedigitale.it/2025/08/16/u...

Breach da 8,9 GB espone operazioni e toolkit malevoli del gruppo nordcoreano Kimsuky, rivelando log phishing e infrastrutture di spionaggio.

#CobaltStrike #CoreadelNord #databreach #Generator #kimsuky #phishing #toolkit
www.matricedigitale.it/2025/08/12/k...