Opsec Cyber Ben Read Archives - Page 2 of 2

Category Archives: Ben Read

APT39: An Iranian Cyber Espionage Group Focused on Personal Information

January 29 2019 By Daniel Pany in Andrew Thompson, APT, Ben Read, Cristiana Brafman-Kittner, Iran, Nalani Fraser, Sanaz Yashar, Sarah Hawley, Threat Research, Yuri Rozhansky

UPDATE (Jan. 30): Figure 1 has been updated to more accurately reflect APT39 targeting. Specifically, Australia, Norway and South Korea have...

Iranian Threat Group Updates Tactics, Techniques and Procedures in Spear Phishing Campaign

March 13 2018 By Daniel Pany in Ben Read, Dileep Kumar Jallepalli, Iran, Spear Phishing, Sudeep Singh, Threat Research, Yogesh Londhe

Introduction From January 2018 to March 2018, through FireEye’s Dynamic Threat Intelligence, we observed attackers leveraging the latest code execution and persistence techniques to distribute malicious ...

FireEye Uncovers CVE-2017-8759: Zero-Day Used in the Wild to Distribute FINSPY,FireEye Uncovers CVE-2017-8759: Zero-Day Used in the Wild to Distribute FINSPY

September 12 2017 By Daniel Pany in 0-day, Ben Read, Blog, FLARE, Genwei Jiang, James T. Bennett, Threat Research, Zero-day Vulnerability

FireEye recently detected a malicious Microsoft Office RTF document that leveraged CVE-2017-8759, a SOAP WSDL parser code injection vulnerability. This vulnerability allows a malicious actor...

FireEye Uncovers CVE-2017-8759: Zero-Day Used in the Wild to Distribute FINSPY,FireEye Uncovers CVE-2017-8759: Zero-Day Used in the Wild to Distribute FINSPY

September 12 2017 By Daniel Pany in 0-day, Ben Read, Blog, FLARE, Genwei Jiang, James T. Bennett, Security, Threat Research, Zero-day Vulnerability

FireEye recently detected a malicious Microsoft Office RTF document that leveraged CVE-2017-8759, a SOAP WSDL parser code injection vulnerability. This vulnerability allows a malicious actor...