Venture Wolf attempts to disrupt Russian businesses with MetaStealerBI.ZONE Threat Intelligence has discovered a previously unknown cluster whose activity can be traced back to November 2023. Dubbed Venture…Nov 5Nov 5
Exploring CVE-2024–38227 vulnerability in Microsoft SharePointOn September 10, Microsoft released another batch of updates addressing 79 vulnerabilities in its products. Among the patches that caught…Oct 25Oct 25
Core Werewolf hones its arsenal against Russia’s government organizationsAdversaries experiment with new tools and malware delivery methods.Oct 10Oct 10
Wreaking havoc in cyberspace: threat actors experiment with pentest toolsA new research by BI.ZONE Threat Intelligence reveals how adversaries attempt to bypass cybersecurity systems.Oct 8Oct 8
Zooming in on CVE-2024–7965On August 21, Google released an update for Chrome, fixing a total of 37 security flaws. Researchers across the globe paid their attentionSep 23Sep 23
Breaking down CVE-2024–38063: remote exploitation of the Windows kernelWe have examined the Windows TCP/IP network stack flaw that could grant adversaries remote access with maximum privileges. Exploiting…Sep 31Sep 31
Stone Wolf employs Meduza Stealer to hack Russian companiesA new cluster of activity abuses a legitimate brand to spearphish for credentials and system dataSep 2Sep 2
Bloody Wolf strikes organizations in Kazakhstan with STRRAT commercial malwareSince late 2023, BI.ZONE Threat Intelligence experts have been tracking the activity of Bloody Wolf. The cluster attacks organizations in…Jul 31Jul 31
Sapphire Werewolf polishes Amethyst stealer to attack over 300 companiesThe adversaries use the open-source SapphireStealer to create their own malware for collecting employee authentication data from Russian…Jun 5Jun 5
Scaly Wolf’s new loader: the right tool for the wrong jobThe BI.ZONE Threat Intelligence team has uncovered a fresh campaign by the group targeting Russian and Belarusian organizationsMay 2May 2