Ave Maria

In this blog entry we look into a fileless campaign that used a new HCrypt variant to distribute numerous remote access trojans (RATs) in victim systems.

We have continued tracking APT-C-36, also known as Blind Eagle, since our research on this threat actor in 2019. We share new findings of APT-C-36’s ongoing spam campaign targeting South American e...

Uptycs Threat Research discovered an ongoing attack related to Confucius APT, a threat actor primarily targeting government sectors in South Asia.

Uptycs identified an XLS document that downloaded a payload named Warzone RAT that can steal credentials and log keystrokes.

New discovery by the Uptycs Threat Research Team of WarzoneRAT malware samples and Process Injection/Hallowing technique implementation that enables the bypass of detections.