Sponsor of the Day:
Jerkmate
https://attack.mitre.org/groups/G0096/
APT41, Wicked Panda, Brass Typhoon, BARIUM, Group G0096 | MITRE ATT&CKĀ®
mitre attapt41wickedpandabrass
https://cloud.google.com/blog/topics/threat-intelligence/apt41-initiates-global-intrusion-campaign-using-multiple-exploits/
APT41 Initiates Intrusion Campaign Using Multiple Exploits | Google Cloud Blog
Mandiant has observed APT41 attempt to exploit vulnerabilities in Citrix NetScaler/ADC
google cloud blogcampaign usingapt41initiatesintrusion
https://cloud.google.com/blog/topics/threat-intelligence/apt41-us-state-governments/
APT41 Targeting U.S. State Government Networks | Mandiant | Google Cloud Blog
We detail APT41's persistent effort that allowed them to successfully compromise at least 6 U.S. state government networks by exploiting vulnerable web apps.
mandiant google cloudstate governmentapt41targetingnetworks
https://securelist.com/apt41-in-africa/116986/
SOC files: an APT41 attack on government IT services in Africa | Securelist
Sep 8, 2025 - Kaspersky experts analyze an incident that saw APT41 launch a targeted attack on government IT services in Africa.
socfilesapt41attackgovernment