Thibaut
@passil_t
Followers
176
Following
321
Media
0
Statuses
100
Cyber Threat Hunter at Broadcom Inc. (Symantec Enterprise Division) Formerly ESET Research. also me: https://t.co/u4EOrwZNXa
France
Joined March 2021
RT @threatintel: Another wiper attack targeting organizations in Albania by the Iranian Druidfly group. SHA256: 81eb22828306f3197b35fef2035….
0
27
0
RT @threatintel: China-linked espionage group Billbug compromised multiple orgs in a Southeast Asian country, including a government minist….
0
10
0
RT @threatintel: Multiple new variants of a malicious driver that first surfaced in 2022 are circulating in the wild. The driver is used by….
0
5
0
RT @threatintel: Government ministries, an air traffic control organization, a telecoms company, and a media outlet targeted in espionage c….
0
5
0
RT @threatintel: The domain greentrees[.]top has been leveraged for C2 purposes by actors using #BlackBasta #ransomware in multiple attacks….
0
5
0
RT @ESETresearch: #ESETresearch discovered an #exploit targeting Firefox and Windows zero days, used in the wild by Russia-aligned #RomCom.….
0
80
0
RT @threatintel: A campaign involving an old version of Microsoft Word used for sideloading and TrueSight Killer, which was previously repo….
0
3
0
RT @threatintel: Ongoing campaign targeting IIS servers incl one airline in Middle East. Unknown payload (goopdate32.dll), likely sideloade….
0
8
0
RT @ESETresearch: #ESETresearch discovered a signed, vulnerable, ad-injecting driver from a mysterious Chinese company. This threat, which….
0
90
0
RT @Threatlabz: ThreatLabz has uncovered new tools from #APT41 including #DodgeBox and #MoonWalk. DodgeBox utilizes EDR evasion techniques….
0
88
0
RT @threatintel: Our Threat Hunter Team has found some evidence that attackers linked to Black Basta may have exploited CVE-2024-26169 as a….
0
29
0
RT @SophosXOps: In May 2023, Sophos MDR discovered an intruder exploiting a component of VMware on a customer’s network. MDR launched a thr….
0
34
0
RT @threatintel: North Korean espionage group #Springtail, recently the subject of a U.S. government alert, has been updating its toolset.….
security.com
More than one legitimate software package was modified to deliver malware in North Korean group’s recent campaign against South Korean organizations.
0
9
0
RT @ESETresearch: #BREAKING #ESETresearch discovered Operation Texonto, a disinformation campaign intended to demoralize Ukrainians. We det….
0
52
0
RT @ESETresearch: #ESETresearch has discovered a China-aligned APT group, which we named #Blackwood, that leverages adversary-in-the-middle….
welivesecurity.com
ESET researchers uncover NSPX30, a sophisticated implant used by a new China-aligned APT group we have named Blackwood.
0
67
0
RT @threatintel: NEW: Seedworm: Iranian Hackers Target Telecoms Orgs in North and East Africa - MuddyC2Go infrastructure and custom keylogg….
0
13
0
RT @ESETresearch: #ESETResearch discovered a zero-day XSS vulnerability (#CVE-2023-5631) in Roundcube Webmail servers. It is actively used….
0
85
0
RT @threatintel: #Budworm - APT Group Uses Updated Custom Tool in Attacks on Government and Telecoms Org - Previously unseen version of #Sy….
0
12
0
RT @threatintel: Our Threat Hunter team has found evidence of updated tooling by the Clubhorn APT group (aka #SideCopy). Recent attack invo….
0
14
0
RT @threatintel: #NEW - #Graphican - #Flea (#APT15) Uses New Tool in Attacks Targeting Foreign Ministries - backdoor leverages Microsoft Gr….
0
20
0