New TTPs observed in Mint Sandstorm campaign targeting high-profile individuals at universities and research orgs | allinfosecnews.com

Jan. 17, 2024, 11:16 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Since November 2023, Microsoft has observed a distinct subset of Mint Sandstorm (PHOSPHORUS) targeting high-profile individuals working on Middle Eastern affairs at universities and research organizations in Belgium, France, Gaza, Israel, the United Kingdom, and the United States. In this campaign, Mint Sandstorm used bespoke phishing lures in an attempt to socially engineer targets into downloading malicious files. In a handful of cases, Microsoft observed new post-intrusion tradecraft including the use of a new, custom backdoor called MediaPl.

Operators associated …

belgium campaign france gaza high high-profile individuals israel microsoft mint mint sandstorm november november 2023 organizations phosphorus profile research sandstorm states targeting ttps united united kingdom united states universities working

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Release Notes: YARA Search, New Rules, Config Extractors, and More 51 minutes ago | malware.news

any.run april config data +22

2023 Activities Summary of SectorJ groups (KOR) an hour ago | malware.news

ISC Stormcast For Thursday, May 2nd, 2024 https://isc.sans.edu/podcastdetail/8964, (Thu, May 2nd) 3 hours ago | malware.news

Verizon’s 2024 Data Breach Investigations Report: 5 key takeaways 5 hours ago | malware.news

ai threats article breach data +16

Analysis of TargetCompany’s Attacks Against MS-SQL Servers (Mallox, BlueSky Ransomware) 6 hours ago | malware.news

ahnlab analysis asec attacks +21

4 Easy Ways to Find Free Wi-Fi Anywhere You Go 6 hours ago | malware.news

can challenge coffee easy +10

AI's Offensive & Defensive Impacts 8 hours ago | malware.news

alto blog cybersecurity defensive +11

Cyberattack against United Russia claimed by Ukraine 8 hours ago | malware.news

attack cyberattack distributed initiative +14

US jails former NSA employee for attempting secret sale to Russia 8 hours ago | malware.news

agency article confidential defense +25

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

Senior Software Engineer, Security

@ Niantic | Zürich, Switzerland

View on infosec-jobs.com

Consultant expert en sécurité des systèmes industriels (H/F)

@ Devoteam | Levallois-Perret, France

View on infosec-jobs.com

Cybersecurity Analyst

@ Bally's | Providence, Rhode Island, United States

View on infosec-jobs.com

Digital Trust Cyber Defense Executive

@ KPMG India | Gurgaon, Haryana, India

View on infosec-jobs.com

Program Manager - Cybersecurity Assessment Services

@ TestPros | Remote (and DMV), DC

View on infosec-jobs.com