SECURING THE DIGITAL FRONTIER
Navigate the evolving landscape of cyber threats with expert insights, threat analysis, and cutting-edge security solutions. Stay protected in an increasingly connected world.
ADVANCED PERSISTENCE THREATS ON ASIAN COUNTRIES INCLUDING SRI-LANKA
Threat Actors often leverage domain-based infrastructure to host and facilitate malicious operations. When actors deploy these new domains, they often leave patterns that can be used to signature the infrastructure and link it to past known activity.
Latest Intelligence Reports
ABANS PLC HAS BEING BREACHED BY THE NOTORIOUS HACKER 'Real888'
The infamous threat actor Real888, known for targeting major enterprises worldwide, has successfully breached Abans PLC. The compromised database reportedly includes sensitive customer information such as telephone numbers, email addresses, and transaction details. This breach underscores the critical need for enhanced cybersecurity measures to protect against sophisticated adversaries.
Cargills Ceylon and Coca-Cola Targeted by SideWinder APT in a Sophiticated Phishing Campaign
Sri Lanka has repeatedly found itself in the crosshairs of nation-state hackers over the past years, yet the nation's cybersecurity posture remains alarmingly underdeveloped. This negligence has left critical infrastructure and citizens exposed to relentless cyber threats.
MALWARE AS A SERVICE OPERATION USING DCRAT & ASYNC-RAT
The investigation revealed a sophisticated Malware-as-a-Service (MaaS) operation leveraging the Kodiak open-source Command and Control (C2) framework to deploy Remote Access Trojans (RATs) and associated payloads. Analysts uncovered critical intelligence, including the identification of malicious IP addresses, open ports with RAT indicators, and operational missteps by the threat actor, such as exposing their username in SSL/TLS certificate fields.
