FBI Warns Silent Ransom Group Walking Into Law Firms
FBI flash alert on Silent Ransom Group USB attacks at law firms. LA Metro attributed to Iranian APT. SymJack weaponizes AI coding agents. CVE-2026-45659.
Posts tagged: Apt
UAT-8302 China-Nexus APT Exposed by Cisco Talos
UAT-8302 APT targets governments with NetDraft and VSHELL, Cisco acquires Astrix Security for non-human identity, DigiCert revokes certs after breach.
Firmware Rootkit: The Malware That Survives a Full OS Reinstall
Technical analysis of UEFI/firmware rootkits: LoJax, MoonBounce, CosmicStrand, and BlackLotus. Detection with chipsec, TPM attestation, and Secure Boot …
Watering Hole Attack: They Compromised the Site You Trust
How watering hole attacks work: victim profiling, iframe injection, drive-by exploits. Real incidents, JavaScript fingerprinting, CSP headers, and browser …
SolarWinds Supply Chain Attack — SUNBURST Explained
Deep dive into the SUNBURST backdoor: Orion build pipeline injection, DGA-based C2, lateral movement, detection with Splunk SPL, and supply chain defense …