Rising #Trojan Activity in #APAC : Keep an eye out for #GoldFactory and #Gigabud ! These mobile Trojans are increasingly active in the region, posing a significant threat to mobile security.

Often high-profile news about new leaks doesn't bring any reinforcement. You need to approach it with some criticality and check what they have written. Unfortunately, news agencies often don't check data, but that's what we are there for - to filter out and leave only important.

The #GoldDigger family grows: Group-IB's TI Unit finds GoldPickaxe.iOS, the first #iOS #Trojan harvesting #FacialRecognition data for unauthorized bank access, targeting #APAC . It is linked to the GoldDigger family discovered last October. Learn more: bit.ly/3UHDaAq

Group-IB flags #ResumeLooters hacking spree in APAC since early '23, using #SQL injections & #XSS to pilfer data from 65 sites, affecting users across India, Taiwan, Thailand, and Vietnam. Attacker accounts & data sale ads spotted in Chinese #hacking groups on Telegram.

Not all resumes are so innocent. By looking through resume, you can fall into the trap of hackers who can take more than you wanted to offer. Stay tuned for our blog about unknown #hackers #ResumeLooters and what applying for a job can lead to. #APAC #ThreatIntelligence

#GambleForce , a new threat actor, emerged in Sep 2023 targeting 24 sites including government, gambling, retail, travel, and job-seeking platforms across Asia-Pacific. They utilize open-source pentesting tools like #sqlmap and #CobaltStrike , mostly operating in Chinese.

#Krasue , a Linux #RAT , has been active since 2021. Group-IB confirms it's hit #Thai telecom companies. This malware includes #rootkits for different Linux kernel vers, hiding its activities using various tactics, including disguised 'alive pings' via RTSP.

Sometimes I think that hurray, I finally have time to research one thing, but then a bunch of events arrive at once and I no longer know what to grab onto and when it will all end. Tell me I'm not the only one?😅 #ResearcherLife

Meet our new find - EagleStrike GamebleForce. They are actively attacking #APAC , namely the #gambling industry. #ThreatIntelligence

Threat hunting is like solving a never-ending puzzle. Hacker groups are constantly trying to hide behind new (sometimes legitimate) programs. Our new find from the #MuddyWater group.
Simon Kenin

It's time to take stock of the first week of the conflict: Telegram channels serve as a significant hub for hacktivist coordination. Group-IB research unveils 740+ DDoS and website deface attacks, primarily targeting government, banks, telecoms, IT, media, and retail.
#CTI_ISRPAL

In a world of advanced tech and military tensions, a dose of skepticism is crucial. Blindly trusting #hacktivist channels can lead to misinformation. Verify and stay informed responsibly. #InformationVerification

Meet #ShadowSyndicate
The #RaaS realm is a rapidly evolving landscape. ShadowSyndicate isn't bound to one #ransomware strain; they've dabbled in 7⃣ different families over the past year. This blog provides insights into their infrastructure, shedding light on a complex landscape