Wayne
@kprobes.bsky.social
Threat Intelligence - Detection Engineering
According to SentinelOne threat actors such as #bluenoroff are favouring .zshenv persistence to avoid user notification. Not sure it can be referred to as novel but interesting nevertheless. www.sentinelone.com/labs/bluenor...
BlueNoroff Hidden Risk | Threat Actor Targets Macs with Fake Crypto News and Novel Persistence
SentinelLabs has observed a suspected DPRK threat actor targeting Crypto-related businesses with novel multi-stage malware.
www.sentinelone.com
November 12, 2024 at 2:42 AM
According to SentinelOne threat actors such as #bluenoroff are favouring .zshenv persistence to avoid user notification. Not sure it can be referred to as novel but interesting nevertheless. www.sentinelone.com/labs/bluenor...