ioc[.]one - OSINT Cyber Threat Intelligence Database

Show in Graph

Common Information

Type	Value
Value	Winterflounder
Category	Actor
Type	Threat-Actor
Misp Type	Cluster
Description	Unit 42 threat researchers have recently observed a threat group distributing new, custom developed malware. We have labelled this threat group the Gamaredon Group and our research shows that the Gamaredon Group has been active since at least 2013. In the past, the Gamaredon Group has relied heavily on off-the-shelf tools. Our new research shows the Gamaredon Group have made a shift to custom-developed malware. We believe this shift indicates the Gamaredon Group have improved their technical capabilities.

Details		Published	Attributes	Title
Details	Website	2023-06-12	91	安全事件周报 2023-06-12 第24周
Details	Website	2023-06-05	10	Rewterz Threat Alert – North Korea Linked Konni APT Group – Active IOCs
Details	Website	2023-06-02	16	Rewterz Threat Alert – APT Group Gamaredon aka Shuckworm – Active IOCs
Details	Website	2023-06-02	9	Rewterz Threat Alert – StormKitty Stealer: A Threatening Information-Stealing Malware – Active IOCs
Details	Website	2023-06-02	12	Rewterz Threat Alert –Tofsee Malware – Active IOCs
Details	Website	2023-06-02	3	Rewterz Threat Advisory – ICS: Advantech WebAccess/SCADA Vulnerabilities
Details	Website	2023-06-01	13	Rewterz Threat Alert – Amadey Botnet – Active IOCs
Details	Website	2023-06-01	18	Rewterz Threat Alert – STRRAT Malware – Active IOCs
Details	Website	2023-06-01	8	Rewterz Threat Alert – APT Group Gamaredon aka Shuckworm – Active IOCs
Details	Website	2023-06-01	2	Rewterz Threat Advisory – Multiple IBM QRadar WinCollect Agent Vulnerabilities
Details	Website	2023-05-31	13	Rewterz Threat Alert – DarkSide Ransomware – Active IOCs
Details	Website	2023-05-31	1	Rewterz Threat Advisory – CVE-2023-30601 – Apache Cassandra Vulnerability
Details	Website	2023-05-30	14	Russian Malware Network Dismantled; Iranian Threat Actors Attack PaperCut Servers
Details	Website	2023-05-25	2	Rewterz Threat Advisory – Multiple Zyxel Devices Vulnerabilities
Details	Website	2023-05-16	52	The Growing Threat from Infostealers
Details	Website	2023-05-16	15	Trends and Predictions of Growing Cryptocurrency Cyberattacks
Details	Website	2023-05-10	10	Rewterz Threat Advisory – Multiple Mozilla Firefox Vulnerabilities
Details	Website	2023-05-09	7	Creative Ransomware Extortion; Further Malware Capabilities With ChatGPT
Details	Website	2023-05-08	15	Rewterz Threat Alert – APT Group Gamaredon aka Shuckworm – Active IOCs
Details	Website	2023-05-08	3	Rewterz Threat Advisory – Multiple Microsoft Edge (Chromium-based) Vulnerabilities
Details	Website	2023-05-08	2	Rewterz Threat Advisory – CVE-2023-2478 – GitLab Vulnerability
Details	Website	2023-05-07	3	Rewterz Threat Advisory – CVE-2022-45048 – Apache Ranger Vulnerability
Details	Website	2023-05-04	15	3CX Incident Attributed to North Korea; New LockBit MacOS Sample
Details	Website	2023-05-02	6	Rewterz Threat Alert – APT Group Gamaredon – Active IOCs
Details	Website	2023-05-02	54	Polish Healthcare Industry Targeted by Vidar Infostealer Likely Linked to Djvu Ransomware