https://www.proofpoint.com/au/blog/threat-insight/ta505-and-others-launch-new-coronavirus-campaigns-now-largest-collection-attack
TA505 Malware Threat Insights | Proofpoint AU
May 16, 2024 - TA505 and others have launched one of the largest phishing attacks in years targeting healthcare, manufacturing and pharma. See how TA505 malware works and how...
threat insightsta505malwareproofpointau
https://www.securitymagazine.com/articles/93589-threat-actor-ta505-exploiting-zerologon-to-attack-and-gain-account-control-privileges
Threat actor TA505 exploiting ZeroLogon to attack and gain account control privileges | 2020-10-12...
Microsoft recently warned that more cybercriminals have started to incorporate exploit code for the ZeroLogon vulnerability in their attacks. Threat actor...
https://www.trendmicro.com/es_mx/research/19/h/ta505-at-it-again-variety-is-the-spice-of-servhelper-and-flawedammyy.html
TA505: Variety in Use of ServHelper and FlawedAmmyy | Trend Micro (MX)
Aug 27, 2019 - TA505 continues to wreak as much havoc for maximized profits. Still using ServHelper and FlawedAmmyy, they continue to make small changes: targeting other...
in usetrend microta505variety
https://securityaffairs.com/123441/breaking-news/ta505-mirrorblast-malspam-campaign.html
Russia-Linked TA505 targets financial institutions in a malspam campaign
Oct 16, 2021 - TA505 APT leverages a lightweight Office file to spread malware in a campaign, tracked as MirrorBlast, aimed at financial institutions.
financial institutionsrussialinkedta505targets
https://thehackernews.com/2022/09/ta505-hackers-using-teslagun-panel-to.html
TA505 Hackers Using TeslaGun Panel to Manage ServHelper Backdoor Attacks
Researchers detail TeslaGun, a previously undocumented software control panel used by the financially motivated cybercrime group TA505.
to manageta505hackersusingpanel
https://www.trendmicro.com/pt_br/research/19/h/ta505-at-it-again-variety-is-the-spice-of-servhelper-and-flawedammyy.html
TA505: Variety in Use of ServHelper and FlawedAmmyy | Trend Micro (BR)
Aug 27, 2019 - TA505 continues to wreak as much havoc for maximized profits. Still using ServHelper and FlawedAmmyy, they continue to make small changes: targeting other...
in usetrend microta505variety
https://securityaffairs.com/74639/hacking/settingcontent-ms-flawedammyy-rat.html
TA505 abuses PDF files with SettingContent-ms to distribute FlawedAmmyy RAT
Jul 22, 2018 - Proofpoint uncovered a massive malspam campaign leveraging emails delivering weaponized PDF documents containing malicious SettingContent-ms files.
pdf filesta505abuses
https://www.proofpoint.com/us/threat-insight/post/ta505-shifts-times
TA505 shifts with the times | Proofpoint US
Aug 5, 2024 - Proofpoint researchers provide an update on substantial changes in the TTPs of one of the most prolific actors we track.
with theta505shiftstimesproofpoint