How the Iranian Cyber Security Agency Detects Emissary Panda Malware

Other threat intelligence groups have previously publicised that the Chinese-attributed threat group, Emissary Panda (aka APT27, TG-3390, BRONZE UNION, Iron Tiger and LuckyMouse), have been targeting various sectors in the Middle East, including government organisations. On 15 December 2019, Iran's Minister of Communications and Information Technology, Mohammad Javad Azari-Jahromi, announced that Iranian authorities had detected foreign spying malware on their government servers which they attributed... Continue Reading →

Azorult – what we see using our own tools

The Value of Being Able to Perform Threat Analysis outside the Boundaries of Your Enterprise... Looking at Dmitry Bestuzhev’s piece about AZORult cryptominer spreading as a fake ProtonVPN installer[1],   I took a glance in Augury at what we have for the malware hashes he provided and many are still very low in terms of their detection... Continue Reading →

August 5 – 8, 2019: BlackHat USA

Team Cymru is coming to BlackHat 2019! Come meet Jeff Vosburg, David Monnier, Steve Santorelli, Jim Skidmore, Courtney Auchter, Scott Fisher, and Tiffany Ostrowski. Stop by our hospitality suite at MGM to find out what we have been up to lately and see a demo of our flagship product offering: Augury. We'll be happy to... Continue Reading →

Up ↑