Cobalt Strike

A red-team architecture called Cobalt Strike is mostly used for simulating adversaries.  The new vulnerability (tracked CVE-2022-42948) affects Cobalt Strike version 4.7.1 and results from an insufficient patch that HelpSystemsRead More →

The Lapsus$ hacking group is abusing stolen NVIDIA code signing certificates to inadvertently sign malware on vulnerable Windows deployments. This week, NVIDIA confirmed that it suffered a cyberattack that allowedRead More →

Cybersecurity specialists report the detection of various malicious campaigns based on the abuse of a component in Microsoft Build Engine (MSBuild) in order to execute a Cobalt Strike payload onRead More →