Live
jordiserrano.meClickFixKAIROSIntelTracker 🌐 Traducir PanelActoresCampanasCompararEstadisticasBreachesRSSAPI
8,267Incidentes
414Actores
166Paises
20 JunActualizado
ArsenalExploitsTTP MatrixKillChainMapaActoresSSLBLRansomLookRansomwhereAlertasCyberNews
2026-05-22: 14 2026-05-23: 8 2026-05-24: 22 2026-05-25: 860 2026-05-26: 335 2026-05-27: 3 2026-05-28: 21 2026-05-29: 116 2026-05-30: 16 2026-05-31: 5 2026-06-01: 36 2026-06-02: 19 2026-06-03: 33 2026-06-04: 37 2026-06-05: 175 2026-06-06: 20 2026-06-07: 1 2026-06-08: 38 2026-06-09: 48 2026-06-10: 150 2026-06-11: 43 2026-06-12: 25 2026-06-13: 3 2026-06-14: 8 2026-06-15: 66 2026-06-16: 23 2026-06-17: 16 2026-06-18: 412 2026-06-19: 3 2026-06-20: 271
7d: 802 posts
340 grupos activos
+316 nuevos
Top: china (13.6%)
china ▲ 109 100% bushidouk ▲ 55 100% other-actors ▲ 47 100% iran ▲ 39 100% russia ▲ 31 100%

Actores mas activos

qilin631thegentlemen406akira295dragonforce244incransom224

Paises con mas actividad

United States1762United Kingdom242Germany224China207Canada155

IOCs con relaciones

hash72ip22ip3ip2ip2
2 de 2 incidentesExportar CSV
Also note that Turla used OilRigs implants,https://www.fireeye.com/blog/threat-research/2016/05/targeted_attacksaga.html,http://researchcenter.paloaltonetworks.com/2016/10/unit42-oilrig-malware-campaign-updates-toolset-and-expands-targets/,http://researchcenter.paloaltonetworks.com/2016/05/the-oilrig-campaign-attacks-on-saudi-arabian-organizations-deliver-helminth-backdoor/,http://www.clearskysec.com/oilrig/,https://cert.gov.il/Updates/Alerts/SiteAssets/CERT-IL-ALERT-W-120.pdf,http://researchcenter.paloaltonetworks.com/2017/04/unit42-oilrig-actors-provide-glimpse-development-testing-efforts/,http://blog.morphisec.com/iranian-fileless-cyberattack-on-israel-word-vulnerability%20,https://www.forbes.com/sites/thomasbrewster/2017/02/15/oilrig-iran-hackers-cyberespionage-us-turkey-saudi-arabia/#56749aa2468a,https://researchcenter.paloaltonetworks.com/2017/07/unit42-twoface-webshell-persistent-access-point-lateral-movement/,https://researchcenter.paloaltonetworks.com/2017/07/unit42-oilrig-uses-ismdoor-variant-possibly-linked-greenbug-threat-group/,https://researchcenter.paloaltonetworks.com/2017/09/unit42-striking-oil-closer-look-adversary-infrastructure/,https://www.fireeye.com/blog/threat-research/2017/12/targeted-attack-in-middle-east-by-apt34.html,https://researchcenter.paloaltonetworks.com/2017/12/unit42-introducing-the-adversary-playbook-first-up-oilrig/,https://www.dragos.com/blog/20180517Chrysene.html,https://www.fireeye.com/content/dam/collateral/en/mtrends-2018.pdf,https://sec0wn.blogspot.com/2018/05/prb-backdoor-fully-loaded-powershell.html,https://www.ncsc.gov.uk/news/turla-group-exploits-iran-apt-to-expand-coverage-of-victims,https://securityintelligence.com/posts/new-destructive-wiper-zerocleare-targets-energy-sector-in-the-middle-east/,https://www.clearskysec.com/powdesk-apt34/,https://unit42.paloaltonetworks.com/oilrig-novel-c2-channel-steganography/,https://blog.talosintelligence.com/2018/11/dnspionage-campaign-targets-middle-east.html,https://blog.talosintelligence.com/2019/04/dnspionage-brings-out-karkoff.html,https://www.crowdstrike.com/blog/widespread-dns-hijacking-activity-targets-multiple-sectors/,https://blog-cert.opmd.fr/dnspionage-retour-factuel-sur-les-attaques-annoncees-dans-differents-medias/,https://www.trendmicro.com/en_us/research/23/b/new-apt34-malware-targets-the-middle-east.html,https://www.trendmicro.com/en_no/research/23/i/apt34-deploys-phishing-attack-with-new-malware.html,https://research.checkpoint.com/2023/from-albania-to-the-middle-east-the-scarred-manticore-is-listening/,,,,,,
iran Reference Iran Gov T1566
Que es Turla es un grupo de ciberataques asociado al país de Irán, conocido por su actividad de espionaje cyber y operaciones de ingeniería social. El grupo utiliza técnicas avanzadas para comprometer…
Iran3 minVer analisis →
APTTrail: APT SHAMOON indicators and references
apt-shamoon Ioc Unknown
Resumen APTTrailAPTTrail mantiene indicadores publicos asociados a APT SHAMOON. Aliases observados: APT SHAMOON. Conteo por tipo: domain: 10.Indicadores de Compromiso (IOCs)TipoValorContextoDomainanal…
Unknown1 minVer analisis →