The Anomali Blog

Anomali Threat Research April 20, 2021

Anomali Cyber Watch: Criminals Target Would Be Hackers for Cryptocurrency Theft, A Zero Day Vulnerability in Windows Desktop Manager is in the Wild, US Blames Russia for SolarWinds, and More

The various threat intelligence stories in this iteration of the Anomali Cyber Watch discuss the following topics: Android Malware, Dependency Confusion, Ransomware, Russia, SaintBot and Vulnerabilities. The IOCs related to these stories are attached to Anomali Cyber Watch and can be used to check your logs for potential malicious…

Anomali Cyber Watch

Anomali Threat Research April 19, 2021

Primitive Bear (Gamaredon) Targets Ukraine with Timely Themes

Russia-Sponsored Group Employs Apparently Legitimate Documents Aligned to Growing Hostilities Between Russia and Ukraine Authored by: Gage Mele, Yury Polozov, and Tara Gould Key Findings Anomali Threat Research discovered a campaign targeting Ukrainian government officials with malicious files that could be repurposed to target…

Research

Anomali Threat Research April 13, 2021

Anomali Cyber Watch: Android Malware, Government, Middle East and More

The various threat intelligence stories in this iteration of the Anomali Cyber Watch discuss the following topics: APT, Cobalt Group, FIN6, NetWalker, OilRig, Rocke Group, and Vulnerabilities. The IOCs related to these stories are attached to Anomali Cyber Watch and can be used to check your logs for potential malicious activity.…

Anomali Cyber Watch

Anomali Threat Research April 6, 2021

Anomali Cyber Watch: APT Groups, Data Breach, Malspam, and More

The various threat intelligence stories in this iteration of the Anomali Cyber Watch discuss the following topics: APT10, Charming Kitten, China, Cycldek, Hancitor, Malspam, North Korea, Phishing, TA453, and Vulnerabilities. The IOCs related to these stories are attached to Anomali Cyber Watch and can be used to check your logs…

Anomali Cyber Watch

Anomali Threat Research March 31, 2021

Bahamut Possibly Responsible for Multi-Stage Infection Chain Campaign

Authored by: Gage Mele, Tara Gould, Winston Marydasan, and Yury Polozov Key Findings Anomali Threat Research discovered cyberthreat actors distributing malicious documents exploiting a vulnerability (CVE-2017-8570) during a multi-stage infection chain to install a Visual Basic (VB) executable on target machines. This exploitation…

Research

Anomali Threat Research March 30, 2021

Anomali Cyber Watch: Malware, Phishing, Ransomware and More.

The various threat intelligence stories in this iteration of the Anomali Cyber Watch discuss the following topics: BlackKingdom, Chrome Extensions, Microsoft, REvil, PurpleFox, Phishing, and Vulnerabilities. The IOCs related to these stories are attached to Anomali Cyber Watch and can be used to check your logs for potential…

Anomali Cyber Watch

Anomali Threat Research March 23, 2021

Anomali Cyber Watch: APT, Malware, Vulnerabilities and More.

The various threat intelligence stories in this iteration of the Anomali Cyber Watch discuss the following topics: BlackRock, CopperStealer, Go, Lazarus, Mirai, Mustang Panda, Rust, Tax Season, and Vulnerabilities. The IOCs related to these stories are attached to Anomali Cyber Watch and can be used to check your logs for…

Anomali Cyber Watch

Anomali Threat Research March 17, 2021

Anomali Cyber Watch: APT, Ransomware, Vulnerabilities and More

The various threat intelligence stories in this iteration of the Anomali Cyber Watch discuss the following topics: APT, AlientBot, Clast82, China, DearCry, RedXOR, and Vulnerabilities. The IOCs related to these stories are attached to Anomali Cyber Watch and can be used to check your logs for potential malicious activity. Figure 1…

Anomali Cyber Watch

Hugh Njemanze March 16, 2021

An Intelligence-Driven Approach to Extended Detection and Response (XDR)

Threat detection isn’t getting any easier. Today’s threat actors are escalating the number of attacks they launch, going after more targets, using increasingly sophisticated techniques, and achieving their goals through surreptitiousness – not notoriety. With more than 2,000 security vendors cataloged and…

Cyber Threat Intelligence

Anomali Threat Research March 9, 2021

Anomali Cyber Watch: APT, Finance Ransomware and More

The various threat intelligence stories in this iteration of the Anomali Cyber Watch discuss the following topics: APT, China Chopper, Gozi, Hafnium, Phishing, and Vulnerabilities. The IOCs related to these stories are attached to Anomali Cyber Watch and can be used to check your logs for potential malicious activity. Figure 1 -…

Anomali Cyber Watch

Our Products

ThreatStream

Match

Lens

Marketplace Offerings

Threat Intelligence Feeds

Threat Analysis Tools & Enrichments

Security System Partners

For Partners

Apply Today

Resources

Browse all

Topics

Free Tools

Anomali at Work

Get in touch

The Anomali Blog

Anomali Cyber Watch: Criminals Target Would Be Hackers for Cryptocurrency Theft, A Zero Day Vulnerability in Windows Desktop Manager is in the Wild, US Blames Russia for SolarWinds, and More

Primitive Bear (Gamaredon) Targets Ukraine with Timely Themes

Anomali Cyber Watch: Android Malware, Government, Middle East and More

Anomali Cyber Watch: APT Groups, Data Breach, Malspam, and More

Bahamut Possibly Responsible for Multi-Stage Infection Chain Campaign

Anomali Cyber Watch: Malware, Phishing, Ransomware and More.

Anomali Cyber Watch: APT, Malware, Vulnerabilities and More.

Anomali Cyber Watch: APT, Ransomware, Vulnerabilities and More

An Intelligence-Driven Approach to Extended Detection and Response (XDR)

Anomali Cyber Watch: APT, Finance Ransomware and More

Subscribe to the Anomali Newsletter