Robert Falcone, Author at Unit 42

A pictorial representation of a supply chain attack like that against 3CXDesktopApp

2,608

people reacted

脅威に関する情報: 3CXDesktopAppのサプライチェーン攻撃 (2023-04-03 16:45 PDT)

By Robert Falcone and Josh Grunzweig
March 30, 2023 at 8:06 PM

0

3 min. read

A pictorial representation of the ProxyNotShell bypass threat brief

2,931

people reacted

脅威に関する情報: OWASSRF脆弱性のエクスプロイト

By Robert Falcone and Lior Rochberger
December 23, 2022 at 12:15 AM

0

3 min. read

[2022-03-04 06:15 PSTの内容を反映] 脅威に関する情報: 現在進行中のロシアとウクライナのサイバー紛争

6,605

people reacted

[2022-03-04 06:15 PSTの内容を反映] 脅威に関する情報: 現在進行中のロシアとウクライナのサイバー紛争

By Robert Falcone, Mike Harbison and Josh Grunzweig
January 21, 2022 at 1:21 AM

0

3 min. read

A conceptual image symbolizing cybercrime and the use of backdoors, such as the activity we observed in an APT's TiltedTemple Campaign against ManageEngine ServiceDesk Plus, as discussed here.

7,604

people reacted

APT攻撃グループ ManageEngine への攻撃をさらに拡大 ServiceDesk Plus も攻撃の対象に

By Robert Falcone and Peter Renals
December 2, 2021 at 6:00 AM

1

2 min. read

A conceptual image representing cybercrime, such as the use of the NGLite backdoor described here and the KdcSponge credential-stealing tool.

11,397

people reacted

ManageEngine ADSelfService Plusに対する標的型攻撃キャンペーンで防衛関連企業など機密情報を扱う産業分野が被害を受けたことが判明

By Jeff White, Peter Renals and Robert Falcone
November 7, 2021 at 11:58 PM

0

5 min. read

Mespinoza ransomware gang

4,012

people reacted

Mespinozaランサムウェアギャング被害組織を「パートナー」と呼びGasketやMagicSocksツールで攻撃

By Robert Falcone, Alex Hinchliffe and Quinn Cooke
July 15, 2021 at 3:00 AM

0

5 min. read

3,964

people reacted

恥を知らぬ新たな商用暗号通貨スティーラーWeStealと商用RAT WeControl

By Robert Falcone and Simon Conant
April 29, 2021 at 1:25 AM

1

3 min. read

A conceptual image representing espionage, such as the attempted (but unsuccessful) credential harvesting discussed here.

3,949

people reacted

攻撃者によるMicrosoft Exchange Serverの脆弱性悪用で Cortex XDRが認証情報の収集を防止

By Robert Falcone
April 15, 2021 at 6:00 AM

34

2 min. read

The BumbleBee webshell, conceptually illustrated here, was discovered as part of an investigation of the continued xHunt campaign.

3,548

people reacted

xHuntキャンペーン: 横展開に使用される新たなBumbleBee WebシェルとSSHトンネル

By Robert Falcone
January 11, 2021 at 12:01 AM

1

13 min. read

Conceptual image illustrating Egregor ransomware.

3,738

people reacted

脅威の評価: Egregorランサムウェア

By Doel Santos, Brittany Barbehenn and Robert Falcone
December 8, 2020 at 6:00 PM

0

< 1 min. read

A conceptual image illustrating the concept of espionage, including the type of stealthy activity using backdoors that threat researchers observed the xHunt campaign using.

3,810

people reacted

xHuntキャンペーン: 新たに発見されたバックドアが削除された電子メールドラフトとコマンド&コントロール用のDNSトンネリングを使用

By Robert Falcone
November 9, 2020 at 12:00 AM

1

3 min. read

An illustration of the concept of ransomware, including Thanos

4,188

people reacted

Thanosランサムウェア: 中東および北アフリカの政府系組織を標的とする破壊的亜種

By Robert Falcone
September 3, 2020 at 1:51 AM

0

3 min. read

Conceptual image illustrating WastedLocker ransomware

5,086

people reacted

脅威の評価: WastedLockerランサムウェアの活動

By Alex Hinchliffe, Doel Santos, Adrian McCabe and Robert Falcone
July 30, 2020 at 7:44 PM

0

< 1 min. read

A conceptual illustration showing a world map along with icons representing malware and other tools used by malicious actors

3,123

people reacted

中東の通信事業者を標的とするOilRigが、ステガノグラフィを利用する新手のC2チャネルを攻撃手段に追加

By Robert Falcone
July 29, 2020 at 10:05 PM

0

3 min. read

3,317

people reacted

南アジアの政府機関と軍事施設を標的とする、更新されたBackConfigマルウェア

By Alex Hinchliffe and Robert Falcone
May 14, 2020 at 11:40 PM

0

5 min. read