Category: APT

Published 1 year ago

Detecting HAFNIUM Exchange Exploitation Campaign with ReaQta-Hive

A hunting query to identify post-exploitation activities Customized Detection Strategy (DeStra) to detect future exploitation attempts On the 11th of March, Microsoft reported an active exploitation campaign of several zero-day vulnerabilities affecting on-premise versions of Microsoft Exchange Servers allegedly from a state-sponsored adversary, HAFNIUM. The attack starts by exploiting vulnerabilities — CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and …

Continue reading “Detecting HAFNIUM Exchange Exploitation Campaign with ReaQta-Hive”

Published 1 year ago
Leonardo S.p.A. Data Breach Analysis
Published 1 year ago
ReaQta Launches ReaQta-EON and Hive-Guard
Published 2 years ago
Oil and Gas Supply-chain Phishing Campaign
Published 2 years ago
MITRE ATT&CK Evaluation Confirms ReaQta-Hive Advanced Detection Capabilities
Published 3 years ago
Spear-phishing campaign targeting Qatar and Turkey
Published 4 years ago
A dive into MuddyWater APT targeting Middle-East

Category: APT

Detecting HAFNIUM Exchange Exploitation Campaign with ReaQta-Hive

Leonardo S.p.A. Data Breach Analysis

ReaQta Launches ReaQta-EON and Hive-Guard

Oil and Gas Supply-chain Phishing Campaign

MITRE ATT&CK Evaluation Confirms ReaQta-Hive Advanced Detection Capabilities

Spear-phishing campaign targeting Qatar and Turkey

A dive into MuddyWater APT targeting Middle-East