Unveiling the REF5961 Intrusion Set: A Deep Dive into EAGERBEE, RUDEBIRD, and DOWNTOWN Malware Families The REF5961 intrusion set represents a sophisticated cyber-espionage campaign primarily targeting ASEAN (Association of Southeast Asian Nations) members and Mongolian government infrastructure.

#EAGERBEE, #RUDEBIRD, DOWNTOWN—no, not the next Marvel spinoff. These bumbling malware villains are targeting ASEAN & Mongolia with C2 antics and TLS tricks. Elastic dropped YARA rules, so…game over, bad guys? 🔒

blog.alphahunt.io/unveiling-th...

#AlphaHunt #CyberSecurity #CTI #InfoSec

EAGERBEE Malware Detection: New Backdoor Variant Targets Internet Service Providers and State Bodies in the Middle East - SOC Prime Detect EAGERBEE malware, a new backdoor variant targeting organizations in the Middle East, with Sigma rules from SOC Prime Platform.

Detect #EAGERBEE – a new backdoor targeting Middle East ISPs and government sector – using a set of Sigma rules in the SOC Prime Platform.
buff.ly/4gLN2B1
#cybersecurity #infosec

Novel EAGERBEE Variant Uses Sophisticated Backdoor Techniques to Target ISPs and Govts

🔗Read more: www.technadu.com/novel-eagerb...

#EagerBee #Malware #Backdoor

The EAGERBEE backdoor may be related to the CoughingDown actor Kaspersky researchers analyze EAGERBEE backdoor modules, revealing a possible connection to the CoughingDown APT actor.

最新のコンポーネントを搭載したEAGERBEEは中東をターゲットにしている

EAGERBEE, with updated and novel components, targets the Middle East #Kaspersky (Jan 6)

#EAGERBEE #バックドア #APT #中東 #サイバー攻撃

Eagerbee backdoor deployed against Middle Eastern govt orgs, ISPs New variants of the Eagerbee malware framework are being deployed against government organizations and internet service providers (ISPs) in the Middle East.

Eagerbee バックドアが中東の政府機関、ISP に展開される

Eagerbee backdoor deployed against Middle Eastern govt orgs, ISPs #BleepingComputer (Jan 6)

#Eagerbee #CrimsonPalace #CoughingDown #ProxyLogon #中東サイバー攻撃

EagerBee Backdoor Takes Flight Against Mideast Targets The malware, operated by China-backed cyberattackers, has been significantly fortified with new evasive and post-infection capabilities.

EagerBee バックドアが中東の ISP や政府機関を標的に攻撃を開始

EagerBee Backdoor Takes Flight Against Mideast ISPs, Government Targets #DarkReading (Jan 7)

#EagerBee #バックドア #中国ハッカー #中東 #サイバー攻撃

EAGERBEE Malware Updated It’s Arsenal to Attack ISPs & Government Entities The investigation into the EAGERBEE backdoor revealed its deployment within Middle Eastern ISPs and government entities of novel components,

EAGERBEE Malware Updated It’s Arsenal With Payloads & Command Shells
gbhackers.com/eagerbee-mal...

#Infosec #Security #Cybersecurity #CeptBiro #EAGERBEE #MalwareUpdated #Payloads #CommandShells

EagerBee Backdoor Takes Flight Against Mideast Targets The malware, operated by China-backed cyberattackers, has been significantly fortified with new evasive and post-infection capabilities.

EagerBee Backdoor Takes Flight Against Mideast ISPs, Government Targets
www.darkreading.com/cyberattacks...

#Infosec #Security #Cybersecurity #CeptBiro #EagerBee #Backdoor #ISP #GovernmentTargets

EAGERBEE Backdoor Linked to CoughingDown Threat Group An investigation into the EAGERBEE backdoor has revealed connections to the CoughingDown threat group, highlighting similarities in their command-and-control infrastructure and raising concerns about potential risks to organizations.

New findings link the EAGERBEE backdoor to the CoughingDown threat group, showing similarities in their command-and-control systems. Organizations should strengthen defenses to counter potential risks. Stay informed about evolving #cybersecurity threats. #threat #EAGERBEE

🛠️Added blog to #CyberSecFolio covering #EAGERBEE backdoor. https://s.mtrbio.com/fnbbupuknv #infosec #cyber #security