Robert Falcone, Author at Unit 42

A pictorial representation of an adversary such as a cluster linked to Alloy Taurus.

250

people reacted

東南アジア政府へのサイバースパイ攻撃に Stately Taurus (別名 Mustang Panda) が関与

By Lior Rochberger, Tom Fakterman and Robert Falcone
September 26, 2023 at 11:00 PM

0

5 min. read

A pictorial representation of an adversary such as a cluster linked to Alloy Taurus.

140

people reacted

東南アジア政府への執拗なサイバースパイ活動に Alloy Taurus が関与

By Lior Rochberger, Tom Fakterman and Robert Falcone
September 26, 2023 at 11:00 PM

0

6 min. read

A pictorial representation of an adversary such as an actor linked to Gelsemium that targeted a Southeast Asian government.

180

people reacted

APT 攻撃グループ Gelsemium との関与が疑われる稀なバックドア東南アジア政府への標的型攻撃で発見

By Lior Rochberger, Tom Fakterman and Robert Falcone
September 26, 2023 at 11:00 PM

0

4 min. read

A pictorial representation of an adversary such as the three attack clusters that targeted a Southeast Asian government.

170

people reacted

Unit 42 東南アジア政府を標的とする複数のスパイ活動を発見

By Lior Rochberger, Tom Fakterman and Robert Falcone
September 26, 2023 at 11:00 PM

1

2 min. read

WinRAR の CVE-2023-40477 脆弱性のエクスプロイトを謳う偽 PoC (概念実証) が見つかる − PoC 実行で VenomRAT に感染

808

people reacted

WinRAR の CVE-2023-40477 脆弱性のエクスプロイトを謳う偽 PoC (概念実証) が見つかる − PoC 実行で VenomRAT に感染

By Robert Falcone
September 21, 2023 at 12:42 AM

0

5 min. read

A pictorial representation of a supply chain attack like that against 3CXDesktopApp

2,946

people reacted

脅威に関する情報: 3CXDesktopAppのサプライチェーン攻撃 (2023-04-03 16:45 PDT)

By Robert Falcone and Josh Grunzweig
March 30, 2023 at 8:06 PM

0

3 min. read

A pictorial representation of the ProxyNotShell bypass threat brief

3,111

people reacted

脅威に関する情報: OWASSRF脆弱性のエクスプロイト

By Robert Falcone and Lior Rochberger
December 23, 2022 at 12:15 AM

0

3 min. read

[2022-03-04 06:15 PSTの内容を反映] 脅威に関する情報: 現在進行中のロシアとウクライナのサイバー紛争

6,750

people reacted

[2022-03-04 06:15 PSTの内容を反映] 脅威に関する情報: 現在進行中のロシアとウクライナのサイバー紛争

By Robert Falcone, Mike Harbison and Josh Grunzweig
January 21, 2022 at 1:21 AM

0

3 min. read

A conceptual image symbolizing cybercrime and the use of backdoors, such as the activity we observed in an APT's TiltedTemple Campaign against ManageEngine ServiceDesk Plus, as discussed here.

7,746

people reacted

APT攻撃グループ ManageEngine への攻撃をさらに拡大 ServiceDesk Plus も攻撃の対象に

By Robert Falcone and Peter Renals
December 2, 2021 at 6:00 AM

1

2 min. read

A conceptual image representing cybercrime, such as the use of the NGLite backdoor described here and the KdcSponge credential-stealing tool.

11,821

people reacted

ManageEngine ADSelfService Plusに対する標的型攻撃キャンペーンで防衛関連企業など機密情報を扱う産業分野が被害を受けたことが判明

By Jeff White, Peter Renals and Robert Falcone
November 7, 2021 at 11:58 PM

0

5 min. read

Mespinoza ransomware gang

4,162

people reacted

Mespinozaランサムウェアギャング被害組織を「パートナー」と呼びGasketやMagicSocksツールで攻撃

By Robert Falcone, Alex Hinchliffe and Quinn Cooke
July 15, 2021 at 3:00 AM

0

5 min. read

4,067

people reacted

恥を知らぬ新たな商用暗号通貨スティーラーWeStealと商用RAT WeControl

By Robert Falcone and Simon Conant
April 29, 2021 at 1:25 AM

1

3 min. read

A conceptual image representing espionage, such as the attempted (but unsuccessful) credential harvesting discussed here.

4,088

people reacted

攻撃者によるMicrosoft Exchange Serverの脆弱性悪用で Cortex XDRが認証情報の収集を防止

By Robert Falcone
April 15, 2021 at 6:00 AM

34

2 min. read

The BumbleBee webshell, conceptually illustrated here, was discovered as part of an investigation of the continued xHunt campaign.

3,683

people reacted

xHuntキャンペーン: 横展開に使用される新たなBumbleBee WebシェルとSSHトンネル

By Robert Falcone
January 11, 2021 at 12:01 AM

1

13 min. read

Conceptual image illustrating Egregor ransomware.

3,837

people reacted

脅威の評価: Egregorランサムウェア

By Doel Santos, Brittany Barbehenn and Robert Falcone
December 8, 2020 at 6:00 PM

0

< 1 min. read