Emerging Threats
Featured ThreatS
Stay one step ahead with our “Emerging Threats” section, your ultimate resource for navigating the shifting landscape of cyber threats. Discover both free and premium hunt packages expertly crafted to hunt for the latest behaviors!
Hunt packages are designed to be effortlessly deployed in your SIEM, EDR, NDR, and XDR Platform!
Don’t have a FREE Community Account, yet? Sign up today!
BlackSuit Ransomware
Threat Overview – BlackSuit Ransomware BlackSuit ransomware recently has established itself as a significant threat since its emergence in May 2023. Originating from members of
BlackSuit Ransomware
Threat Overview – BlackSuit Ransomware BlackSuit ransomware recently has established itself as a significant threat since its emergence in May 2023. Originating from members of
Spectre RAT
Threat Overview – Spectre RAT The Spectre remote access trojan (RAT) is modular malware that was first seen in September of 2020, being available as
Hunting for Credential Theft – Identify When an InfoStealer May be Stealing Sensitive Access
Threat Overview – Hunting for Credential Theft – Identify When an InfoStealer May be Stealing Sensitive Access The recent SnowFlake incident has brought to light
DarkGate Malware
Threat Overview – DarkGate Malware DarkGate malware variant was first observed in the wild in 2018 (seemingly in production since 2017), evolving into a more
GootLoader Malware
Threat Overview – GootLoader Malware The GootLoader malware variant is identified as a downloader, and is used to facilitate the pathway to the next stage(s)
Black Basta Ransomware and Threat Group
Threat Overview – Black Basta Ransomware and Threat Group **Black Basta** Ransomware and Threat Group (originally seen in 2022) is known to encrypt files on
CVE-2024-3400 – Palo Alto OS Command Injection Vulnerability
Threat Overview – CVE-2024-3400 – Palo Alto OS Command Injection Vulnerability CVE-2024-3400 is a unauthenticated remote code execution vulnerability identified in devices utilizing GlobalProtect, and