LetsDefend SOC250 - APT35 HyperScrape Data Exfiltration Tool Detected
We start by taking the ownership of the alert. Next we create case for the alert. Next step is for us too start the playbook Before we move ahead, let's search for the file's hash on VirusTotal: 50 out of 70 vendors flag it as malicious, enough for us to conclude that is is. Next we move on to En
ORIGINAL SOURCE →via Dev.to
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Chernobyl virus turned 27 today, and it could brick your PC in ways modern malware can't by overwriting BIOS firmware
- [CYBER] CVE-2018-25297 - Wansview 1.0.2 Denial of Service via Buffer Overflow
- [CYBER] CVE-2018-25296 - P10 Central Management Software 1.4.13 Denial of Service
- [CYBER] CVE-2018-25295 - ObserverIP Scan Tool 1.4.0.1 Denial of Service via IP Field
- [CYBER] CVE-2018-25294 - CEWE Photoshow 6.3.4 Buffer Overflow Denial of Service
- [CYBER] CVE-2018-25293 - Prime95 29.4b7 Denial of Service via Proxy Password Field