3. We also explore potential connections of the EAGERBEE backdoor with the CoughingDown threat group
06.01.2025 09:01 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0
1. We uncovered a novel service injector designed to inject the backdoor into a running service.
2. Additionally, we discovered previously undocumented components (plugins) deployed after the backdoorโs installation to enabled a range of malicious activities.
06.01.2025 09:01 โ ๐ 0 ๐ 0 ๐ฌ 1 ๐ 0
The EAGERBEE backdoor may be related to the CoughingDown actor
Kaspersky researchers analyze EAGERBEE backdoor modules, revealing a possible connection to the CoughingDown APT actor.
EAGERBEE backdoor has been used in targeted attacks in APAC region. We released a blog post about its recent activity in Middle East region, where it was being deployed at ISP and governmental entities.
check out details here - securelist.com/eagerbee-bac...
#APT #Malware #ThreatIntel
06.01.2025 09:01 โ ๐ 1 ๐ 0 ๐ฌ 1 ๐ 0
loves dogs, sports, memes. she/her. podcaster. "bluesky's humblest resident nailfluencer ๐
" - Jerry
my heart is in the west ๐ต๐ views mine.
Executive Director for Intelligence and Security Research @ SentinelOne.
Distinguished Fellow and Adj Professor @ Hopkins SAIS Alperovitch Institute. Three Buddy Problem Co-Host. LABScon Founder, Cyber Paleontologist, Fourth-Party Collector.
CTI โช@wizsecurity.bsky.socialโฌ
Previously NSC44, Mandiant, Google
Go Mammoths
AU PERSON 1. threat intel. i hunt bad guys.
SpyCloud - Director of Security Research, Cryptolaemus Coordinator, Emotet(Ivan)/QBot(Boris) Destroyer, gold prospector & former sysadmin.
Threat Intelligence for Silent Push. Digital security for at-risk people.
Researcher, reader, runner. Eternal traveler, serial migrant, music blogger, lapsed mathematician.
https://lapsedordinary.net/
Signal: martijngrooten.37
mountains, books, bikes, intelligence history. Formerly, threat intel @ GitHub.
Author of No Shortcuts & Ransom War
Co-director Virtual Routes (https://virtual-routes.org/), previously ECCRI
Managing Editor Binding Hook (https://bindinghook.com)
Senior Researcher, ETH Zurich
I cover digital threats for NBC News. Tip me! @kevincollier.01 on signal, kevin.collier@nbcuni.com. NYC, from West Virginia.
Writer for WIRED. Author of SANDWORM. New book, TRACERS IN THE DARK: The Global Hunt for the Crime Lords of Cryptocurrency, out now. agreenberg@wired.com. Andy.01 on Signal.
Real-time historian of the late cyber capitalist era @TechCrunch, writing about the intersection of hackers, human rights, and spies.
๐, โฝ๏ธ, ๐ธ, ๐ฎ by night.
โ๏ธ Signal: +1 917 257 1382
Past lives: VICE Motherboard, Mashable, WIRED.
Senior Threat Researcher @ Proofpoint.
Cybercrime / Cyberespionage aficionado.
Has worked in several CSIRTs/CERTs.
Metal & Rock dude, never enough guitars.
Motorcycles fan.
Wrote a book in French language on cyberespionage.
Ex-Law Enforcement Officer
Threat Research Conference in Malaga, Spain, 6-8 May 2026
#StayTuned #ComingSoon #PIVOTcon #PIVOTcon26
https://pivotcon.org
Threat Analyst @ Microsoft - mostly post about astrophotography and occasional some work. Posts are my own
Thought Trailer, Cyber Threat Intel, DFIR. He/Him. Bucketing, sharing, and bacon-saving as a service. https://validhorizon.medium.com/
Romanian antihacker from another planet. #threatintel #yara #chess #taekwondo black belt
Motto: "One reboot a day keeps the implant away"
Principal Adversary Hunter @dragosinc, Army Veteran,
Cocktail Scientist, APT Researcher | #FSD
https://infosec.exchange/web/@DrunkBinary
https://twitter.com/DrunkBinary
Friendly Neighborhood CTI Analyst | Childrenโs Book Author | Lego builder | Gamer | She/Her
๐จโ๐ป coder + hacker + engineer.
๐น Hunting Adversaries.
๐ฆ
#Philly sports
๐ฎ Video games.
Views/Opinions are my own.
Freedom for all. ๐บ๐ธ๐ณ๏ธโ๐๐ณ๏ธโโง๏ธ๐บ๐ฆ
Posts/Skeets disappear.
Re-post โ endorsement.
