BLUE

Llazarusholic.bsky.socialJan 4, 2024 12:30pm

"100DaysofYARA - SpectralBlur" published by GregLesewich. #KANDYKORN, #TA444, #YARA, #CTI, #OSINT, #LAZARUS g-les.github.io/yara/2024/01/03/100DaysofYARA_SpectralBlur.html

Ssleuthcon.bsky.socialJul 21, 2023 2:20pm

Hear more from Greg Lesnewich on the rapidly evolving initial access methods employed by one of North Korea's cybercriminal groups, TA444, and the context for why North Korea must resort to cybercrime. https://youtu.be/LYHmTjFW-nY

JLjshlbrd.bsky.socialMay 12, 2023 5:58pm

TA444 using AppleScript and shell commands to drop payloads on macOS