Orange Cyberdefense CERT
@ocd-cert.bsky.social
The CERT Orange Cyberdefense brings together experts on Cyber Threat Intelligence (CTI), Cybercrime Monitoring (MCM), Vulnerability Operation Center (VOC) and digital forensics and incident responders (CSIRT).
https://www.orangecyberdefense.com/
https://www.orangecyberdefense.com/
🔗IoCs and Yara available on our GitHub: github.com/cert-orangec...
📮World Watch advisory released today for our clients.
📮World Watch advisory released today for our clients.
cti/emmenhtal at main · cert-orangecyberdefense/cti
IOCs for World Watch investigations. Contribute to cert-orangecyberdefense/cti development by creating an account on GitHub.
github.com
March 17, 2025 at 3:56 PM
🔗IoCs and Yara available on our GitHub: github.com/cert-orangec...
📮World Watch advisory released today for our clients.
📮World Watch advisory released today for our clients.
During our analysis, we noticed a surprising line, likely written by threat actors to prevent AI-powered file scanning
This is actually the first time we observed such an attempt, even though we found it to be unsuccessful with GPT-4o.
This is actually the first time we observed such an attempt, even though we found it to be unsuccessful with GPT-4o.
March 17, 2025 at 3:56 PM
During our analysis, we noticed a surprising line, likely written by threat actors to prevent AI-powered file scanning
This is actually the first time we observed such an attempt, even though we found it to be unsuccessful with GPT-4o.
This is actually the first time we observed such an attempt, even though we found it to be unsuccessful with GPT-4o.
V3 features several changes including new mouse movements speed check.
Recent infection chains includes new intermediary stage (Powershell with AMSI bypass feature which loads a .NET stage) in charge of delivering #stealers.
Recent infection chains includes new intermediary stage (Powershell with AMSI bypass feature which loads a .NET stage) in charge of delivering #stealers.
March 17, 2025 at 3:56 PM
V3 features several changes including new mouse movements speed check.
Recent infection chains includes new intermediary stage (Powershell with AMSI bypass feature which loads a .NET stage) in charge of delivering #stealers.
Recent infection chains includes new intermediary stage (Powershell with AMSI bypass feature which loads a .NET stage) in charge of delivering #stealers.