ABOUT
CVE DATABASE
CONTACT
VISIT SENTINELONE.COM

Advanced Persistent Threat

I Soons Data Breach The Leak That Revealed Chinas Cyber Operations 5
Advanced Persistent Threat

Unmasking I-Soon | The Leak That Revealed China’s Cyber Operations
Dakota Cary & Aleksandar Milenkoski /

The I-Soon leak reveals the maturing nature of China’s cyber espionage and a competitive hacker marketplace driven by government demands.

Read More
A Glimpse Into Future ScarCruft Campaigns Attackers Gather Strategic Intelligence And Target Cybersecurity Professionals 20
Advanced Persistent Threat

ScarCruft | Attackers Gather Strategic Intelligence and Target Cybersecurity Professionals
Aleksandar Milenkoski & Tom Hegel /

New ScarCruft activity suggests the adversary is planning to target cybersecurity professionals and businesses.

Read More
Sandman APT China Based Adversaries Embrace Lua 19
Advanced Persistent Threat

Sandman APT | China-Based Adversaries Embrace Lua
Aleksandar Milenkoski /

SentinelLabs, Microsoft, and PwC threat intelligence researchers provide attribution-relevant information on the Sandman APT cluster.

Read More
Elephant Hunting Inside An Indian Hack For Hire Group 9
Advanced Persistent Threat

Elephant Hunting | Inside an Indian Hack-For-Hire Group
Tom Hegel /

Exploring the technical intricacies of Appin, a hack-for-hire group, revealing confirmed attribution and global threat activity, both old and new.

Read More
Arid Viper APTs Nest Of SpyC23 Malware Continues To Target Android Devices 1
Advanced Persistent Threat

Arid Viper | APT’s Nest of SpyC23 Malware Continues to Target Android Devices
Alex Delamotte /

Hamas-aligned threat actor delivers spyware through weaponized apps posing as Telegram or Skipped messenger.

Read More
The Israel Hamas War Cyber Domain State Sponsored Activity Of Interest 6
Advanced Persistent Threat

The Israel-Hamas War | Cyber Domain State-Sponsored Activity of Interest
Tom Hegel /

Cyber warfare occurring amidst the Israel-Hamas war underscores the importance of keeping tabs on rising APTs and opportunistic hacktivists.

Read More
Sandman APT A Mystery Group Targeting Telcos With A LuaJIT Toolkit 4
Advanced Persistent Threat

Sandman APT | A Mystery Group Targeting Telcos with a LuaJIT Toolkit
Aleksandar Milenkoski /

Sophisticated threat actor deploys high-end malware utilizing the LuaJIT platform to backdoor telcos in Europe, Middle East and South Asia.

Read More
CapraTube Transparent Tribes CapraRAT Mimics YouTube To Hijack Android Phones 3
Advanced Persistent Threat

CapraTube | Transparent Tribe’s CapraRAT Mimics YouTube to Hijack Android Phones
Alex Delamotte /

Pakistan-aligned threat actor weaponizes fake YouTube apps on the Android platform to deliver mobile remote access trojan spyware.

Read More
JumpCloud Intrusion Attacker Infrastructure Links Compromise To North Korean APT Activity 5
Advanced Persistent Threat

JumpCloud Intrusion | Attacker Infrastructure Links Compromise to North Korean APT Activity
Tom Hegel /

North Korean state sponsored APT is behind a new supply chain attack on zero-trust directory platform JumpCloud.

Read More
Kimsuky Strikes Again New Social Engineering Campaign Aims To Steal Credentials And Gather Strategic Intelligence 5
Advanced Persistent Threat

Kimsuky Strikes Again | New Social Engineering Campaign Aims to Steal Credentials and Gather Strategic Intelligence
Aleksandar Milenkoski /

Threat actor targets experts in North Korean affairs with spoofed URLs and weaponized Office documents to steal Google and other credentials.

Read More
1 2 3 4