Mastodawn

Just Another Blue Teamer Apr 13, 2023

Good day everyone! The #TransparentTribe, or #APT36, is the focus of today's #readoftheday and it is brought to you by SentinelOne. The researchers provide technical details that show how the group spread the #CrimsonRAT to its victims, what anti-analysis techniques they used, and how they gained persistence! Enjoy and Happy Hunting!

Transparent Tribe (APT36) | Pakistan-Aligned Threat Actor Expands Interest in Indian Education Sector
https://www.sentinelone.com/labs/transparent-tribe-apt36-pakistan-aligned-threat-actor-expands-interest-in-indian-education-sector/

#CyberSecurity #ITSecurity #InfoSec #BlueTeam #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting

Transparent Tribe (APT36) | Pakistan-Aligned Threat Actor Expands Interest in Indian Education Sector

SentinelLabs has been tracking a cluster of malicious documents that stage the Crimson RAT malware distributed by APT36 (Transparent Tribe).

SentinelOne

ITSEC News Mar 29, 2022

Transparent Tribe campaign uses new bespoke malware to target Indian government officials - By Asheer Malhotra and Justin Thattil with contributions from Kendall McKay.

Cisco Talos... http://blog.talosintelligence.com/2022/03/transparent-tribe-new-campaign.html #crimsonrat #malware #securex #maldoc #apt #rat

Transparent Tribe campaign uses new bespoke malware to target Indian government officials

A blog from the world class Intelligence Group, Talos, Cisco's Intelligence Group

ITSEC News May 13, 2021

Transparent Tribe APT expands its Windows malware arsenal - By Asheer Malhotra, Justin Thattil and Kendall McKay.

Transparent Tribe, also kno... http://feedproxy.google.com/~r/feedburner/Talos/~3/z_NRqWmErnI/transparent-tribe-infra-and-targeting.html #threatspotlight #crimsonrat #obliquerat #malware #securex #threats #talos #apt

Transparent Tribe APT expands its Windows malware arsenal

A blog from the world class Intelligence Group, Talos, Cisco's Intelligence Group

ITSEC News Aug 20, 2020

Transparent Tribe Mounts Ongoing Spy Campaign on Military, Government - The group has added a management console and a USB worming function to its main malware, Crimson R... https://threatpost.com/transparent-tribe-ongoing-spy-campaign-military-government/158515/ #transparenttribe #vulnerabilities #militarytargets #cyberespionage #spearphishing #cyberattacks #spycampaign #government #crimsonrat #datatheft #malware #usbworm #apt

Transparent Tribe Mounts Ongoing Spy Campaign on Military, Government

The group has added a management console and a USB worming function to its main malware, Crimson RAT.

Threatpost - English - Global - threatpost.com

ITSEC News Mar 17, 2020

APT36 Taps Coronavirus as ‘Golden Opportunity’ to Spread Crimson RAT - The Pakistani-linked APT has been spotted infecting victims with data exfiltration malware. more: https://threatpost.com/apt36-taps-coronavirus-as-golden-opportunity-to-spread-crimson-rat/153776/?utm_source=rss&utm_medium=rss&utm_campaign=apt36-taps-coronavirus-as-golden-opportunity-to-spread-crimson-rat #statesponsoredthreatgroup #vulnerabilities #coronavirus #crimsonrat #covid-19 #malware #hacks #apt36 #rat

APT36 Taps Coronavirus as 'Golden Opportunity' to Spread Crimson RAT

The Pakistani-linked APT has been spotted infecting victims with data exfiltration malware.

Threatpost - English - Global - threatpost.com