APT ANALYSIS

♣️Triada strikes back 🐱Blog : https://securelist.com/triada-trojan-modules-analysis/116380 ⭐️@APTANALYSIS

♣️Introducing ToyMaker, an initial access broker working in cahoots with double extortion gangs 🤡Blog : https://blog.talosintelligence.com/introducing-toymaker-an-initial-access-broker ⭐️@APTANALYSIS

♣️Buhtrap Watch Wolf 🪶Download (pdf) ⭐️@APTANALYSIS

🔑Phishing for Codes: Russian Threat Actors Target Microsoft 365 OAuth Workflows (Link)

♣️Russian Infrastructure Plays Crucial Role in North Korean Cybercrime Operations 👼Blog : https://www.trendmicro.com/en_us/research/25/d/russian-infrastructure-north-korean-cybercrime.html ⭐️@APTANALYSIS

♣️Operation SyncHole: Lazarus APT goes back to the well 💀Blog : https://securelist.com/operation-synchole-watering-hole-attacks-by-lazarus/116326 ⭐️@APTANALYSIS

♣️Bypassing Windows Defender antivirus in 2025. Using Direct Syscalls and XOR encryption. 🎩Part 1 : https://www.hackmosphere.fr/bypass-windows-defender-antivirus-2025-part-1/ 🎩Part 2 : https://www.hackmosphere.fr/bypass-windows-defender-antivirus-2025-part-2/ ⭐️@APTANALYSIS

wsrp4echo is the silent tsunami of zero-day vulnerabilities—massive, unnoticed, and devastating...

♣️wsrp4echo - 0day Chain Vulnerability 🔥Blog : https://medium.com/@aryanchehreghani/wsrp4echo-0day-chain-vulnerability-fd2c395dc45b ⭐️@APTANALYSIS

♣️Blacklock Ransomware: A Late Holiday Gift with Intrusion into the Threat Actor's Infrastructure 🔥Blog : https://www.resecurity.com/blog/article/blacklock-ransomware-a-late-holiday-gift-with-intrusion-into-the-threat-actors-infrastructure ⭐️@APTANALYSIS

♣️C2 Redirectors: Advanced Infrastructure for Modern Red Team Operations 👹Blog : https://xbz0n.sh/blog/c2-redirectors ⭐️@APTANALYSIS

🥰VIP Group (1h) : https://t.me/+ZH4G9erD1lA0N2I5

♣️IngressNightmare : Critical Unauthenticated Remote Code Execution Vulnerabilities in Ingress NGINX ✨CVE-2025-1097 👁‍🗨CVE-2025-1098 🔪CVE-2025-24514 😐CVE-2025-1974 🚬Blog : https://www.wiz.io/blog/ingress-nginx-kubernetes-vulnerabilities ⭐️@APTANALYSIS

♣️IngressNightmare : Critical Unauthenticated Remote Code Execution Vulnerabilities in Ingress NGINX ✨CVE-2025-1097 👁‍🗨CVE-2025-1098 🔪CVE-2025-24514 😐CVE-2025-1974 🚬Blog : https://www.wiz.io/blog/ingress-nginx-kubernetes-vulnerabilities 📱@APTIRAN

Previous channel deleted, New channel : @LeakDBMS

💥 The beta version of our Telegram data search bot is now live! You can now search through 300,000 leaked databases in the shortest time possible. 🔥 Over time, the volume of this data will increase, and it’s expected to surpass 1 petabyte by next year. Naturally, this growth will also lead to higher costs. So, by using the bot during the beta phase, not only will you receive discounts for future versions, but you’ll also be able to continue using the bot at the fixed beta price. ✔️ Monthly subscription to use this bot is $200. ✔️ Due to high user demand, each user will be limited to 2 searches and 4 file downloads per day. 💭 This cost is significantly more affordable compared to previous models where users had to pay separately for each file. Now, you can download your desired files at the lowest cost. ❗️Also, rest assured that you will not receive any duplicate data. All files are searched and filtered based on a unique hash, so even if duplicate content exists, it will not appear in your search results. 🤖 BOT: @Search_DBLeakbot 🛸 Visit this bot to purchase your monthly subscription. 📱@APTIRAN

♣️By Executive Order, We Are Banning Blacklists - Domain-Level RCE in Veeam Backup & Replication (CVE-2025-23120) 👁Blog : https://labs.watchtowr.com/by-executive-order-we-are-banning-blacklists-domain-level-rce-in-veeam-backup-replication-cve-2025-23120/ ⭐️@APTANALYSIS

♣️CVE-2022-31199 : NETWRIX AUDITOR ADVISORY SUMMARY 👁Blog : https://bishopfox.com/blog/netwrix-auditor-advisory ♣️CVE-2025-1094 : PostgreSQL SQLi 👁Blog : [Emulation] [Repo2] [3] ⭐️@APTANALYSIS

♣️Evading Microsoft Defender 🤷Blog : https://blog.shellntel.com/p/evading-microsoft-defender ⭐️@APTANALYSIS

♣️Stealc Malware Analysis with Binary Ninja 🎞Youtube ⭐️@APTANALYSIS