🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

🇰🇵 Sekoia #TDR team investigated a malicious campaign that employs fake job interview websites to deliver backdoors on Windows and macOS - #GolangGhost using #ClickFix tactic. Dubbed #ClickFake Interview, this campaign has been attributed to #Lazarus APT blog.sekoia.io/clickfake-inte…

🎉 It's not about a CTI investigation or a Detection Engineering topic, but today we are happy to announce that Sekoia.io has raised €26m! sekoia.io/en/presse/seko…

Pour accélérer son développement, Sekoia.io lève 26 M€ lemondeinformatique.fr/actualites/lir…

Since the apparition of the #Interlock ransomware, the Sekoia #TDR team observed its operators evolving, improving their toolset (#LummaStealer #BerserkStealer), and leveraging new techniques such as #ClickFix to deploy the ransomware payload. blog.sekoia.io/interlock-rans…

Full report includes actionable detection rules, hashes, and infrastructure indicators: harfanglab.io/insidethelab/g…

The 2025 Cyber Threat Intelligence Conference is LIVE on YouTube! Check out the content as it's being streamed out of Berlin, Germany for the first Plenary day of the conference at: youtube.com/live/2pSjbSx8J… #FIRSTCTI25 #CyberThreat #CTI

Our new report describes one of the latest observed infection chains (delivering #AsyncRAT) relying on the #Cloudflare tunnel infrastructure and the attacker’s #TTPs with a principal focus on detection opportunities. blog.sekoia.io/detecting-mult…

Le mode opératoire d’attaque APT28 a été utilisé contre de nombreuses entités des secteurs gouvernemental, diplomatique et de la recherche. Le CERT-FR publie un rapport identifiant des chaînes de compromission. cert.ssi.gouv.fr/cti/CERTFR-202…

France ties Russian APT28 hackers to 12 cyberattacks on French orgs bleepingcomputer.com/news/security/… #Security

🚨🚨 We interrupt this post-RSA haze with a major announcement! The #LABScon25 CFP is officially open. Lock in and let's go! labscon.io/cfp/

Quand l’unité européenne dérange, la désinformation va jusqu’à faire passer un simple mouchoir pour de la drogue. Cette fausse information est propagée par les ennemis de la France, à l’extérieur comme à l’intérieur. Vigilance face aux manipulations.

Lumma infostealer malware operation disrupted, 2,300 domains seized bleepingcomputer.com/news/security/… #Security #Microsoft

Excited to see this paper finally published! Meet #ViciousTrap, a threat actor compromising and turning edge devices into honeypots! blog.sekoia.io/vicioustrap-in…

🪤 Sekoia #TDR's new exclusive research uncovers the #ViciousTrap, a honeypot network deployed on compromised edge devices. buff.ly/94StpGM

🧀 The Sharp Taste of #Mimo’lette: Analyzing Mimo’s Latest Campaign targeting #Craft CMS buff.ly/hv4EWLp

Today, a brilliant operation was carried out — on enemy territory, targeting only military objectives, specifically the equipment used to strike Ukraine. Russia suffered significant losses — entirely justified and deserved.

C’est un sketch ? 🇺🇸

📝 Our latest #TDR report delivers an in-depth analysis of Adversary-in-the-Middle (#AitM) #phishing threats - targeting Microsoft 365 and Google accounts - and their ecosystem. This report shares actionable intelligence to help analysts detect and investigate AitM phishing.

We are excited to share our latest blogpost on AitM phishing threats - covering common TTPs, the PhaaS ecosystem, the most widespread kits, and multiple detection opportunities! x.com/sekoia_io/stat… w/ Grégoire Clermont

A team of Korean researchers has published crucial research analyzing vulnerabilities in financial security software widely used across South Korea. 📄 syssec.kaist.ac.kr/pub/2025/Too_M… While cybersecurity professionals have long been aware of these issues, this paper provides concrete