Mastodawn

We just felt a flipping earthquake in #LNK. That's new.

Massive Winos 4.0 Campaigns Target Taiwan

A series of targeted phishing campaigns in Taiwan have been observed disseminating Winos 4.0 (ValleyRat) malware and associated plugins. The attacks exploit local business processes using themes like tax audits and e-invoices. The campaigns employ various techniques including malicious LNK files, DLL sideloading, and Bring Your Own Vulnerable Driver (BYOVD) attacks. The malware utilizes UAC bypassing, driver loading, and process termination to evade detection and disable security software. The attacks are attributed to a subgroup of the Silver Fox APT, showing sophisticated localization and evolving evasion techniques. The campaigns have been active since at least January 2026, using consistent infrastructure and development identifiers.

Pulse ID: 699a6ee1425f8f4a6e583f31
Pulse Link: https://otx.alienvault.com/pulse/699a6ee1425f8f4a6e583f31
Pulse Author: AlienVault
Created: 2026-02-22 02:50:09

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #LNK #Malware #OTX #OpenThreatExchange #Phishing #RAT #SideLoading #bot #AlienVault

LevelBlue - Open Threat Exchange

Learn about the latest cyber threats. Research, collaborate, and share threat intelligence in real time. Protect yourself and the community against today's emerging threats.

LevelBlue Open Threat Exchange

Karin Dalziel Feb 20

I hope kids had a good time sledding today, I don’t think there has been such a perfect sledding day in a decade (or maybe my memory is bad) #LNK

Mr. Wilson Feb 20

It sounds like there are plenty of tickets left for tonight's Gunhild Carling performance at the Lied Center. If you don't already have plans, I strongly encourage you to get tickets and check out this amazing performer. https://tickets.liedcenter.org/3820 #LNK

Mr. Wilson Feb 20

This view of #LNK from the Capitol's perigrine falcon webcam is lovely.