Cobalt Strike Archives

Threat Group Running Espionage Operations Against Dozens of Governments

Jeffrey Burt | February 5, 2026 | Cobalt Strike, cyberespionage, government attack, Palo Alto Networks Unit 42, phishing attack, spying, Vulnerability Exploitation

Unit 42 researchers say an Asian threat group behind what they call the Shadow Campaigns has targeted government agencies in 37 countries in a wide-ranging global cyberespionage campaign that has involved phishing ...

Security Boulevard

How to Proactively Harden Your Environment Against Compromised Credentials

Digital Defense by Fortra | October 24, 2024 | Blog, Cobalt Strike, cyber threat, Fortra VM, Offensive Security, Vulnerability Management

The post How to Proactively Harden Your Environment Against Compromised Credentials appeared first on Digital Defense ...

Digital Defense

Black Basta Ransomware Attack: Microsoft Quick Assist Flaw

Wajahat Raja | May 28, 2024 | Black Basta Ransomware, Cobalt Strike, Cybersecurity, Cybersecurity News, Data encryption, Incident Response, Malware, Microsoft, Qakbot, Quick Assist, Ransomware, remote access, , Storm-1811, tech support scams, Threat Intelligence

Recent reports claim that the Microsoft Threat Intelligence team stated that a cybercriminal group, identified as Storm-1811, has been exploiting Microsoft’s Quick Assist tool in a series of social engineering attacks. This ...

TuxCare

Cookie parameters from GzipLoader request in NetworkMiner 2.8.1

Forensic Timeline of an IcedID Infection

Erik Hjelmvik | October 12, 2023 | BackConnect, Cobalt Strike, CobaltStrike, ec74a5c51106f0419184d0dd08fb05bc, GzipLoader, IcedID, JA3S, Keyhole, Keylog, NetworkMiner, VNC, Windows Sandbox

The BackConnect and VNC parsers that were added to NetworkMiner 2.8.1 provide a unique possibility to trace the steps of an attacker with help of captured network traffic from a hacked computer ...

NETRESEC Network Security Blog

A Spotlight on Cybersecurity: 2022 Trends and 2023 Predictions

Digital Defense by Fortra | December 16, 2022 | Cobalt Strike, Core Impact, Cybersecurity, Frontline, Videos

The post A Spotlight on Cybersecurity: 2022 Trends and 2023 Predictions appeared first on Digital Defense ...

Digital Defense

WEBINAR: Bundling Up: The Importance of Layering Offensive Security Solutions

Digital Defense by Fortra | September 23, 2022 | Cobalt Strike, Core Impact, Cybersecurity, Frontline, Videos

The post WEBINAR: Bundling Up: The Importance of Layering Offensive Security Solutions appeared first on Digital Defense ...

Digital Defense

WEBINAR: Outsmarting RaaS: Implementation Strategies To Help Your Clients Before, During, and After a Ransomware Attack

Digital Defense by Fortra | September 6, 2022 | Cobalt Strike, Core Impact, Cybersecurity, Frontline, MSP Partners, Uncategorized, Webinars / Podcasts

The post WEBINAR: Outsmarting RaaS: Implementation Strategies To Help Your Clients Before, During, and After a Ransomware Attack appeared first on Digital Defense ...

Digital Defense

WEBINAR: Owning the Offensive Layer of Cyber Security: Understanding How Frontline Integrates into Core Impact and Cobalt Strike

Digital Defense by Fortra | April 13, 2022 | Cobalt Strike, Core Impact, Cybersecurity, Frontline, Videos, Webinars / Podcasts

The post WEBINAR: Owning the Offensive Layer of Cyber Security: Understanding How Frontline Integrates into Core Impact and Cobalt Strike appeared first on Digital Defense ...

Digital Defense

NetworkMiner 2.7.3 Released

Erik Hjelmvik | April 4, 2022 | 6ece5ece4192683d2d84e25b0ba7e04f9cb7eb7c, Abuse.ch, BitRAT, carve, Cobalt Strike, CobaltStrike, DBSBL, DNSBL, Emotet, FileScan.IO, JA3, JoeSandbox, memdump, meterpreter, NetworkMiner, NetworkMinerCLI, OSINT, PIPI, Protocol Detection, Qbot, RFC8422, TrickBot, unfurl, X.509

NetworkMiner now extracts meterpreter payloads from reverse shells and performs offline lookups of JA3 hashes and TLS certificates. Our commercial tool, NetworkMiner Professional, additionally comes with a packet carver that extracts network ...

NETRESEC Network Security Blog

Conti Ransomware Group Diaries, Part III: Weaponry

BrianKrebs | March 4, 2022 | A Little Sunshine, alarm, Bentley, Bio, Bloodrush, Chainalysis, Cobalt Strike, Conti, Grant, Kaktus, LeMans Corporation, Ne'er-Do-Well News, pin, Ransomware, Reshaev, Revers, Salamandra, Skippy, The Spaniard, Tramp, Trickbotleaks, Trump

Part I of this series examined newly-leaked internal chats from the Conti ransomware group, and how the crime gang dealt with its own internal breaches. Part II explored what it's like to ...

Krebs on Security

Cobalt Strike

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On