Since its inception almost a decade ago and the MirrorBlast campaign, the threat actor group known as TA505 has continued to plague the financial, retail and restaurant sectors. Learn more about the GraceWrapper post-exploitation enabler and how its detection evasion technique works. Be it selling compromised network access to malware...

Pen Testing solutions to empower businesses to proactively address application security vulnerabilities amid surging threats CHICAGO, October 11, 2022 – Today, Outpost24 announced the introduction of its Penetration Testing as a Service (PTaaS) solutions to the North American market to better empower businesses to understand and address threats in their...

Meet Shathak – a threat group tied to malware used in the Russian-speaking underground targeting enterprises across different sectors in the Americas, Europe and Asia Threat actor profile: Shathak Image 1: Screenshot of Shathak’s profile from the Threat Context module Known Aliases TA551 Shathak GOLD CABIN Monster Libra ATK236 G0127 Key...

Organizations are rapidly moving towards web-based applications and services to run their business and connect with customers. From eCommerce platforms and customer portals to internal tools and APIs, web apps power essential services across every industry. But with this growing reliance comes a growing risk: cybercriminals are increasingly targeting web...

The Hive Gang is a Ransomware as a Service (RaaS) providers first identified in June 2021. Although relatively new, their aggressive tactics and ever evolving malware variants have made them one of the most successful RaaS groups of its kind. Find out how the group has risen through the ranks...

This month we’re introducing you to GhostSec, a threat group with ties to the Anonymous collective, and their shift from hacktivist to financially motivated hacking activities Threat actor profile: GhostSec Image 1: Screenshot of GhostSec’s profile from the Threat Context module Known Aliases GhostSecMafia GSM Key points GhostSec is a highly...

​  These wiper attacks are designed to identify and destroy data housed on infected machines and appears to be consistent with similar DDoS attacks against the nation during this period. The US Cybersecurity & Infrastructure Security Agency (CISA) issued a “Shields Up” advisory in the wake of these attacks, while...

In the last phishing blog we discussed how modern phishing works on the frontend. Read on to find out how threat actors can easily find and authenticate a suitable domain by modifying both Gophish and Evilginx to evade security controls. In the last phishing blog we discussed how modern phishing works on...

Social engineering is the art of manipulating people, so that they give up confidential information or perform an action you ask them to do. Read and learn first hand how modern phishing works to trick victims into giving up their credentials, bank information or computer access to secretly install malicious...

Stockholm – 13 July 2022: Outpost24 (“Outpost24” or the “Company”), a leading innovator in identifying and managing cybersecurity threats and vulnerabilities, today announced it has partnered with Vitruvian Partners (“Vitruvian”) to power the Company’s next phase of growth. The new ownership structure will enable Outpost24 to invest in its people, processes,...