🏠Home 🚨Threats 🧩Patches 📚Books 🎬Mission Logs

🏷️ #powershell

1 thread tagged with “powershell”

To Be (A Robot) or Not to Be: New Malware Attributed to Russia State-Sponsored COLDRIVER

Google Threat Intelligence describes evolving COLDRIVER tradecraft: NOROBOT loaders set logon scripts that fetch a PowerShell‑based MAYBEROBOT backdoor (aka SIMPLEFIX), offering flexible command execu…

Category: Threat Alerts / Threat Intelligence / Threat Intelligence

#apt#coldriver#norobot#mayberobot#powershell

Explore More Tags

#2fa #7zip #aardvark #account-security #acl #acsc #ad #adobe #advisory #agentic-ai #agents #ai #ai-assisted-attacks #ai-enabled-threats #ai-native #ai-poisoning #ai-security #airlines #aisuru #akira #alert #amd #android #anomali #anubis #anydesk #apache #apache-tika #api-security #appsec #apt #apt36 #arcgis #asm #ato #att #attck #aura_stealer #auth-bypass #automated-patching #automation #automotive #aviation #awareness #aws #azure #azurehound #banking #benchmarking #bfsi #big-ip #bind9 #bitsight #blacksuit #blink #blob-storage #blockchain #bloodhound #board-governance #bopla #botnet #brash #breach #breakout-time #broadcom #broken-authorization #browser #brute-force #bulletproof-hosting #burp #c2 #cache-poisoning #canada #cdr #cellebrite #cert #chaos #chatgpt #check-point #china #chrome #chromium #ci-cd #cisa #cisco-asa #cisco-talos #clickfix #clickjacking #clop #cloud #cloud-security #cloudflare-blocked #cmmc #cms #cnapp #cofense #coinimp #coldriver #collatz #collins-aerospace #compliance #confidential-computing #configurator #cookies #copilot #credential-harvesting #credential-leak #credential-stuffing #credential-theft #credentials #criminalip #critical-infrastructure #critical-update #crowdstrike #crypto #cryptography #cti #cve #cve-2025-40778 #cve-2025-43995 #cve-2025-48384 #cve-2025-49844 #cve-2025-54918 #cve-2025-55320 #cve-2025-55752 #cve-2025-55754 #cve-2025-59287 #cve-2025-59295 #cve-2025-61884 #cve-2025-61932 #cve-2025-6204 #cve-2025-6205 #cve-2025-62168 #cve-2025-6325 #cve-2025-6327 #cve-2025-6950 #cve-2025-8941 #cve-2025-9242 #cwpp #cybercrime #daily-brief #dark-web #dassault #data-breach #data-protection #data-sovereignty #data-theft #ddos #debian #deepfake #deepfakes #defender-for-storage #defense #defense-evasion #defi #dell #delmia #deserialization #deskrat #detection #developer-targeting #device-encryption #dfars #dfir #digital-defense-report #discord-webhooks #dlp #dns #documents #dod #dos #double-extortion #downtime #doxing #doxxing #dprk #dragos #dublin-airport #dynamodb #e-commerce #eaas #ebs #ece #ecommerce #edge #edr-evasion #elastic #elementor #email-security #emerging-tech #encryption #endpoint #energy #entra-id #enumeration #eol #eop #espionage #esxi #europe #europol #everest #executive-protection #exfiltration #explainable-ai #exploit #exposure #exprtai #extortion #f5 #file-upload #fintech #fips #fireware #forensics #fortinet #framework #fraud #fuzzing #gaming #genai #geopolitics #ghost-network #ghostsecurity #git #gitlab #gmail #google #google-ads #google-tag #government #gps-spoofing #grapheneos #grpc #gstreamer #ha #hacktivism #hardware #hardware-security #hash #hash-functions #healthcare #hibp #higher-education #hitl #holdinghands_rat #homomorphic-encryption #honeypot #hooks #hunting #hypervisor #iacr #iam #icloud #ics #ics-attacks #ide #identity #identity-theft #ikev2 #imo #impersonation #india #industrial #industrial-security #information-disclosure #infostealer #injunction #insider-threat #intel #ios #iot #iran #isc #japan #javascript #jewelbug #jinjava #jwt #kentico #kerberos #kernel #kev #kpir #l3harris #lanscope #lapsus$#latvia #layerx #lazarus #ldap #leak #leak-sites #legal #linux #linux-kernel #living-off-the-land #llm #llm-security #llmnr #loader #lockbit #logistics #lotl #lua #lwe #lynx #magento #malaysia #malvertising #malware #mandiant #manufacturing #maritime-security #mass-assignment #mass-attack #mayberobot #mcp #mdr #mena #mermaid #meta #mfa-bypass #mfa-fatigue #microsoft #microsoft-365 #mining #mirai #mitre #mitre-attck #mobile #mobile-security #mod #money-laundering #motex #moxa #multisig #municipal #nation-state #nbtns #ncsc #ndss #net_capi_backdoor #netscaler #netsupport #new-york #news #newsletter #nexperia #nist #nist-800-171 #nizk #norobot #npm #nso #nso_group #ntlm #nvd #oauth #obfuscation #obscura #odp #open-source #openai #openvsx #operation-dream-job #operational-technology #operations #oracle #osint #ot #ot-security #outage #paloalto #paloaltonetworks #pam #partnership #passkeys #password-manager #password-reuse #password-spray #patch #patch-tuesday #patching #payments #pdf #pentest #pentesting #persistence #phantomraven #phantomvai #phishing #phoenix-backdoor #php #pii #pixel #plugin #podcast #policy #post-quantum #powershell #pqc #preparedness #privacy #privilege-escalation #prompt-injection #prosper #protobuf #proxy #pwn2own #qilin #qr #qualys #quantum #raas #radare2 #ransomware #rasman #rat #rce #rclone #rdd #rdp #reconnaissance #red-team #redis #research #resecurity #resilience #responder #retail #risk #risk-management #rootkit #routers #russia #rust #saas #safepay #salesforce #sandworm #sans #sas #sbom #scada #scam-protection #scattered_spider #security-affairs #security-key #security-tools #semiconductors #sentinellabs #seqrite_labs #sessionreaper #shadow-ai #shadow-it #side-channel #siem #sim_boxes #simcartel #slackware #slopsquatting #smart-contracts #smishing #snp #soc #social-engineering #softether #sonatype #sonicwall #sophos #spyware #squid #ssa-2025-291-01 #ssrf #standards #stealer-logs #steganography #storage #stormcast #stunnel #supply-chain #survey #symlink #ta505 #tata-motors #taxonomy #tcns #telecommunications #telegram #tenable #tencent_cloud #the-com #the_com #third-party #threat #threat-intel #threat-intelligence #threat-research #threat-trends #tiktok #tokenization #tomcat #tp-link #training #treaty #trojan #typosquatting #ubuntu #uk #ukraine #un #unit42 #us #us-east-1 #us_federal_officials #usn #usn-7833-2 #v18 #virtualization #virustotal #vishing #vmware #voice #vpn #vscode #vulnerability #vulnerability-management #vulnerability-scanning #vulnerability_management #watchguard #water-sector #web-skimming #web3 #webshell #weekly #whatsapp #wifi #windows #winos_40 #wireless-security #wordpress #workstation #wp-freeio #wso2 #wsus #xortec #xxe #youtube #zdi #zero-day #zero-trust #zeroday #zip

Related Tags

To Be (A Robot) or Not to Be: New Malware Attributed to Russia State-Sponsored COLDRIVER

Explore More Tags