A list of devices and brands monitored by the ViciousTrap infrasctructure. The list includes SOHO routers and switches, network security appliances, DVR/IP cameras, network storage systems and other devices & softwares.

Felix Aimé, Jeremy Scion and Sekoia TDR investigate a threat actor nicknamed ViciousTrap, which compromised over 5,500 edge devices, turning them into honeypots. blog.sekoia.io/vicioustrap-...

23.05.2025 09:22 — 👍 1    🔁 1    💬 0    📌 0

ViciousTrap - Infiltrate, Control, Lure: Turning edge devices into honeypots en masse. Discover ViciousTrap, a newly identified threat who turning edge devices into honeypots en masse targeting

Excited to see this paper finally published! Meet #ViciousTrap, a threat actor turning edge devices into honeypots! 😈 blog.sekoia.io/vicioustrap-...

22.05.2025 12:53 — 👍 2    🔁 2    💬 0    📌 0

PolarEdge: Unveiling an uncovered ORB network Discover PolarEdge, a newly identified botnet targeting edge devices via CVE-2023-20118, using a stealthy TLS backdoor.

Let's take a look at #PolarEdge, yet another threat actor using compromised SOHO/NAS for malicious activities. blog.sekoia.io/polaredge-un...

26.02.2025 10:30 — 👍 4    🔁 2    💬 0    📌 0

blog.sekoia.io/targeted-sup...

22.01.2025 12:00 — 👍 1    🔁 0    💬 0    📌 0

Double-Tap Campaign : Russia-nexus APT possibly related to APT28 conducts cyber espionage on Central Asia and Kazakhstan diplomatic relations Uncover the details of UAC-0063 cyberespionage campaign in Kazakhstan and its potential connection to APT28

"C'est pas parce qu'on est les meilleurs amis du monde qu'on ne peut pas vous envoyer un petit implant " Vladimir P, janvier 2025. Une belle investigation @sekoia.io @felixaime.bsky.social @derutyf.bsky.social
blog.sekoia.io/double-tap-c...

13.01.2025 08:36 — 👍 2    🔁 1    💬 1    📌 0

If you want some YARA rules 🎁, and some tricks on how we YARA (almost) everything at @sekoia.io, this Christmas blog post is for you 👇

19.12.2024 15:28 — 👍 1    🔁 1    💬 0    📌 0

Can a Single Line of Code Change Society? The Systemic Risks As the last few years have seen an increase in both online hostility and polarization, we need to move beyond the fact-checking reflex or the praise for better moderation on social networking sites (S

Pour ceux qui se demandent pourquoi il faut quitter X.
Ce n'est pas une question de "fuir le débat" ou "d'absence de confrontation avec l'altérité". X n'est plus "l'alterité" c'est une mécanique algorithmique toxique.
@chavalarias.bsky.social
1/3
ideas.repec.org/a/jas/jasssj...

07.12.2024 09:52 — 👍 27    🔁 11    💬 1    📌 0

Zyxel security advisory: protecting against recent firewall threats | Zyxel Networks Summary Zyxel is aware of recent attempts by threat actors to target Zyxel firewalls through previously disclosed vulnerabilities, as reported in Sekoia’s blog post. We confirm that firewall firmware ...

I'm quite proud that our honeypots lead to the discovering of a 0day (CVE-2024-11667) used by the Helldown ransomware. Hope to find more stuff like this in the future. www.zyxel.com/global/en/su...

29.11.2024 19:46 — 👍 2    🔁 1    💬 0    📌 0