Common Information
| Type | Value |
|---|---|
| Value |
DarkHydrus - G0079 |
| Category | Actor |
| Type | Mitre-Intrusion-Set |
| Misp Type | Cluster |
| Description | [DarkHydrus](https://attack.mitre.org/groups/G0079) is a threat group that has targeted government agencies and educational institutions in the Middle East since at least 2016. The group heavily leverages open-source tools and custom payloads for carrying out attacks. (Citation: Unit 42 DarkHydrus July 2018) (Citation: Unit 42 Playbook Dec 2017) |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-10-08 | 32 | Hackers Exploiting DNS Tunneling Service To Bypass Network Firewalls | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker | National Cyber Security Consulting | ||
| Details | Website | 2024-10-04 | 149 | No Way to Hide: Uncovering New Campaigns from Daily Tunneling Detection | ||
| Details | Website | 2024-10-01 | 1 | Detecting Malware Abusing Google for Command-and-Control | ||
| Details | Website | 2024-09-11 | 2 | Ransom-War In Real Time, Case Study 1: Conti, EvilCorp and Cozy Bear | ||
| Details | Website | 2023-10-13 | 100 | Understanding DNS Tunneling Traffic in the Wild | ||
| Details | Website | 2021-04-20 | 1764 | Raw Threat Intelligence | ||
| Details | Website | 2020-04-26 | 3 | What Is DNS Tunneling? | ||
| Details | Website | 2020-03-03 | 161 | Molerats Delivers Spark Backdoor to Government and Telecommunications Organizations | ||
| Details | Website | 2020-02-06 | 24 | DNS tunneling series, part 3: The siren song of RogueRobin | ||
| Details | Website | 2019-02-02 | 136 | Threat Intel Reads – January 2019 | ||
| Details | Website | 2019-01-18 | 60 | DarkHydrus delivers new Trojan that can use Google Drive for C2 communications | ||
| Details | Website | 2018-10-15 | 115 | January – September 2018 Cyber Attack Statistics | ||
| Details | Website | 2018-09-05 | 15 | Threat Actors Peddling Weaponized IQY Files Via Necurs Botnet |