#threatreport #MediumCompleteness Falcon Platform Prevents COOKIE SPIDER s SHAMOS Delivery on macOS | 21-08-2025 Source: crowdstrike.com/en-us/blog/fal… Key details below ↓ 🧑‍💻Actors/Campaigns: Cookie_spider (🧠motivation: cyber_criminal) 💀Threats: Amos_stealer, Cuckoo_stealer,

#threatreport #LowCompleteness ESC2. I sign what I want | 21-08-2025 Source: bi.zone/expertise/acti… Key details below ↓ 💀Threats: Esc2_vuln, Certipy_tool, Rubeus_tool, Mimikatz_tool, Cobalt_strike_tool, Empire_loader, Mitm_technique, 🎯Victims: Active directory environments

#threatreport #MediumCompleteness Cybercriminals Abuse AI Website Creation App For Phishing | 20-08-2025 Source: proofpoint.com/us/blog/threat… Key details below ↓ 🧑‍💻Actors/Campaigns: Saad_tycoon 💀Threats: Tycoon_framework, Aitm_technique, Doiloader, Quasar_rat, Clickfix_technique,

#threatreport #LowCompleteness Internet Archive Abused for Hosting Stealthy JScript Loader Malware | 21-08-2025 Source: cybersecuritynews.com/internet-archi… Key details below ↓ 💀Threats: Remcos_rat, X2anylock, 🎯Victims: Internet archive users 🤖LLM extracted TTPs:` T1027 🧨IOCs: -

#threatreport #LowCompleteness Phishing in the Cloud: SendGrid Campaign Exploits Account Security | 21-08-2025 Source: cofense.com/blog/phishing-… Key details below ↓ 💀Threats: Credential_harvesting_technique, 🎯Victims: Sendgrid users 🤖LLM extracted TTPs:` T1036, T1204.002,

#threatreport #MediumCompleteness IBM X-Force Threat Analysis: QuirkyLoader - A new malware loader delivering infostealers and RATs | 21-08-2025 Source: ibm.com/think/x-force/… Key details below ↓ 💀Threats: Quirkyloader, Dll_sideloading_technique, Process_hollowing_technique,

#threatreport #HighCompleteness Phantom Pains: A Massive Cyber Espionage Campaign and Possible Split of the PhantomCore APT Group | 19-08-2025 Source: ptsecurity.com/ru-ru/research… Key details below ↓ 🧑‍💻Actors/Campaigns: Phantomcore 💀Threats: Phantomcore, Phantomtaskshell,

#threatreport #MediumCompleteness Malicious Go Module Disguised as SSH Brute Forcer Exfiltrates Credentials via Telegram | 21-08-2025 Source: socket.dev/blog/malicious… Key details below ↓ 🧑‍💻Actors/Campaigns: Illdieanyway 💀Threats: Webadmin_tool, Selica-c2,

#threatreport #MediumCompleteness The Ghost in the Machine: The Complete Dossier on TA-NATALSTATUS and the Cryptojacking Turf War | 21-08-2025 Source: cloudsek.com/blog/the-ghost… Key details below ↓ 🧑‍💻Actors/Campaigns: Ta-natalstatus (🧠motivation: sabotage) Teamtnt 💀Threats:

#threatreport #MediumCompleteness Examining the tactics of BQTLOCK Ransomware & its variants | 22-08-2025 Source: labs.k7computing.com/index.php/exam… Key details below ↓ 💀Threats: Bqtlock, Process_hollowing_technique, Uac_bypass_technique, Credential_stealing_technique, 🌐Geo: Lebanon,