Robuta

https://www.proofpoint.com/au/blog/threat-insight/ta505-and-others-launch-new-coronavirus-campaigns-now-largest-collection-attack TA505 Malware Threat Insights | Proofpoint AU May 16, 2024 - TA505 and others have launched one of the largest phishing attacks in years targeting healthcare, manufacturing and pharma. See how TA505 malware works and how... threat insightsta505malwareproofpointau https://www.securitymagazine.com/articles/93589-threat-actor-ta505-exploiting-zerologon-to-attack-and-gain-account-control-privileges Threat actor TA505 exploiting ZeroLogon to attack and gain account control privileges | 2020-10-12... Microsoft recently warned that more cybercriminals have started to incorporate exploit code for the ZeroLogon vulnerability in their attacks. Threat actor... https://www.trendmicro.com/es_mx/research/19/h/ta505-at-it-again-variety-is-the-spice-of-servhelper-and-flawedammyy.html TA505: Variety in Use of ServHelper and FlawedAmmyy | Trend Micro (MX) Aug 27, 2019 - TA505 continues to wreak as much havoc for maximized profits. Still using ServHelper and FlawedAmmyy, they continue to make small changes: targeting other... in usetrend microta505variety https://securityaffairs.com/123441/breaking-news/ta505-mirrorblast-malspam-campaign.html Russia-Linked TA505 targets financial institutions in a malspam campaign Oct 16, 2021 - TA505 APT leverages a lightweight Office file to spread malware in a campaign, tracked as MirrorBlast, aimed at financial institutions. financial institutionsrussialinkedta505targets https://thehackernews.com/2022/09/ta505-hackers-using-teslagun-panel-to.html TA505 Hackers Using TeslaGun Panel to Manage ServHelper Backdoor Attacks Researchers detail TeslaGun, a previously undocumented software control panel used by the financially motivated cybercrime group TA505. to manageta505hackersusingpanel https://www.trendmicro.com/pt_br/research/19/h/ta505-at-it-again-variety-is-the-spice-of-servhelper-and-flawedammyy.html TA505: Variety in Use of ServHelper and FlawedAmmyy | Trend Micro (BR) Aug 27, 2019 - TA505 continues to wreak as much havoc for maximized profits. Still using ServHelper and FlawedAmmyy, they continue to make small changes: targeting other... in usetrend microta505variety https://securityaffairs.com/74639/hacking/settingcontent-ms-flawedammyy-rat.html TA505 abuses PDF files with SettingContent-ms to distribute FlawedAmmyy RAT Jul 22, 2018 - Proofpoint uncovered a massive malspam campaign leveraging emails delivering weaponized PDF documents containing malicious SettingContent-ms files. pdf filesta505abuses https://www.proofpoint.com/us/threat-insight/post/ta505-shifts-times TA505 shifts with the times | Proofpoint US Aug 5, 2024 - Proofpoint researchers provide an update on substantial changes in the TTPs of one of the most prolific actors we track. with theta505shiftstimesproofpoint