Common Information
| Type | Value |
|---|---|
| Value |
Zigzag Hail |
| Category | Actor |
| Type | Threat-Actor |
| Misp Type | Cluster |
| Description | Kaspersky described DarkHotel in a 2014 report as: '... DarkHotel drives its campaigns by spear-phishing targets with highly advanced Flash zero-day exploits that effectively evade the latest Windows and Adobe defenses, and yet they also imprecisely spread among large numbers of vague targets with peer-to-peer spreading tactics. Moreover, this crews most unusual characteristic is that for several years the Darkhotel APT has maintained a capability to use hotel networks to follow and hit selected targets as they travel around the world.' |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2022-02-21 | 46 | 蛇从暗黑中袭来——响尾蛇(SideWinder) APT组织2020年上半年活动总结报告 | ||
| Details | Website | 2022-01-12 | 27 | Exploit Kits vs. Google Chrome - Avast Threat Labs | ||
| Details | Website | 2022-01-01 | 90 | Analysis of Ramsay components of Darkhotel's infiltration and isolation network - Programmer Sought | ||
| Details | Website | 2021-12-16 | 36 | New DarkHotel APT attack chain identified | Zscaler | ||
| Details | Website | 2021-12-06 | 1 | Protecting people from recent cyberattacks - Microsoft On the Issues | ||
| Details | Website | 2021-10-26 | 2 | Pegasus: The new global weapon for silencing journalists | Forbidden Stories | ||
| Details | Website | 2021-07-18 | 0 | Single Pass Cloud Engine (SPACE): The Key to Unlocking the True Value of SASE | ||
| Details | Website | 2021-07-08 | 0 | Inside the FBI, Russia, and Ukraine’s failed cybercrime investigation | ||
| Details | Website | 2021-05-05 | 12 | Are the Notorious Cyber Criminals Evil Corp actually Russian Spies? - Truesec | ||
| Details | Website | 2021-04-27 | 5 | APT trends report Q1 2021 | ||
| Details | Website | 2021-01-21 | 0 | Securing the DNS in a Post-Quantum World: Hash-Based Signatures and Synthesized Zone Signing Keys - Verisign Blog | ||
| Details | Website | 2021-01-15 | 3 | Passive Income of Cyber Criminals: Dissecting Bitcoin Multiplier Scam | ||
| Details | Website | 2020-12-21 | 116 | Partial lists of organizations infected with Sunburst malware released online | ||
| Details | Website | 2020-12-17 | 195 | The SolarWinds Orion SUNBURST Supply-chain Attack - Truesec | ||
| Details | Website | 2020-12-03 | 7 | APT annual review: What the world’s threat actors got up to in 2020 | ||
| Details | Website | 2020-11-03 | 7 | APT trends report Q3 2020 | ||
| Details | Website | 2020-10-15 | 1 | Top Ten Information Security Thought Leaders | Infosec Resources | ||
| Details | Website | 2020-09-03 | 1 | Turning Open Source Against Malware - Intezer | ||
| Details | Website | 2020-08-25 | 0 | How Ransomware Gangs Find New Monetization Schemes and Evolve in Marketing - Kela | ||
| Details | Website | 2020-08-13 | 25 | CactusPete APT group’s updated Bisonal backdoor | ||
| Details | Website | 2020-08-13 | 16 | Attribution: A Puzzle | ||
| Details | Website | 2020-08-12 | 27 | Internet Explorer and Windows zero-day exploits used in Operation PowerFall | ||
| Details | Website | 2020-07-14 | 39 | Internet Explorer CVE-2019–1367 Exploitation — part 3 | ||
| Details | Website | 2020-07-13 | 12 | Internet Explorer CVE-2019–1367 In the wild Exploitation — prelude | ||
| Details | Website | 2020-06-14 | 41 | Deep-dive: The DarkHotel APT |