APT Archives - Prevailion

Goblin Panda – One of the World’s Most Active APTs

When considering global threat actors and the impact these groups can have on different geographical regions and industries, we’d be remiss to not spend some time talking about Goblin Panda, considered by Prevailion to be one of the most active Advanced Persistent Threat (APT) groups in the world today. According to the Council on Foreign Relations, “This threat actor targets government agencies and entities in the defense and energy sectors in Southeast Asia with an interest in issues related to tensions in the South China Sea.” Goblin Panda’s Activity According to Prevailian’s threat...

Masquerading as Card-Skimmers: Are Attackers Doing More with Magecart?

Context, Uncategorized

While Magecart is well known as a malware hacking groups use to inject card-skimming scripts into e-commerce platforms, Prevailion researchers have detected many compromises with Magecart that suggest the malicious actors are not actually going after credit card data. According to public data breach records, the credit card information of organizations from British Airways to NutriBullet, Tupperware, easyJet and Macy’s has been targeted in different card-skimming campaigns. In July 2019, attackers leveraged a vulnerability in the e-commerce software platform Magento, which left more than 960 online retailers compromised in a single...

APT Tag

Goblin Panda – One of the World’s Most Active APTs

Masquerading as Card-Skimmers: Are Attackers Doing More with Magecart?

Contact Us

Recent Insights

Staring at the Sun: Thoughts on UNC2452, SUNBURST, SolarWinds and Road Ahead

U.S. Hackers have likely “gone to ground”

‘Most pristine espionage effort’ in modern history right under the US’s nose

TD Ameritrade – SolarWinds – Karim Hijazi’s Cybersecurity notes

About Prevailion