Crimson Palace Resurfaces: Chinese Cyberespionage Campaign Expands in Southeast Asia Sophos X-Ops released a report detailing renewed cyberespionage efforts by what they assess with high confidence as a Chinese state-directed cyber operation.
EDR Killer Tool ‘Poortry’ Evolving: Now Targets Critical Windows Security Components On August 27, 2024, Sophos X-Ops released an in-depth report detailing the continued evolution of the ‘Poortry’ toolset, a malicious EDR (Endpoint Detection and Response) killer used by several ransomware gangs.
Linux Persistence Mechanisms: A Primer on Common Threat Techniques Elastic Security Labs released a comprehensive guide on Linux persistence mechanisms as part of the ongoing Linux Detection Engineering series. This guide is an educational resource for security researchers and defenders.