Kryptina RaaS: From Open-Source Tool to Enterprise-Level Ransomware
On September 23 2024, SentinelOne releases a report on Kryptina Ransomware as a Service covering the May 2024 leak from a Mallox ransomware affiliate’s server.
Linux
Gleaming Pisces Poisoned Python Packages Campaign Delivers PondRAT Linux and MacOS Backdoors
On September 18, 2024, Unit 42 researchers at Palo Alto Networks released an investigation detailing an ongoing cyber campaign by the North Korean-linked threat actor group known as Gleaming Pisces (aka Citrine Sleet).
Linux Persistence Mechanisms: A Primer on Common Threat Techniques
Elastic Security Labs released a comprehensive guide on Linux persistence mechanisms as part of the ongoing Linux Detection Engineering series. This guide is an educational resource for security researchers and defenders.