Turla (Secret Blizzard) APT: STOCKSTAY and Kazuar Backdoors Explained
By
[email protected] (Umut Bayram)
Source
picussecurity.comTurla (Secret Blizzard) APT: STOCKSTAY and Kazuar Backdoors Explainedpicussecurity.comYou might also wanna read
Google Threat Intelligence Analyzes Turla's STOCKSTAY .NET Backdoor Used in Cyber Espionage Against Ukraine and Europe
Google Threat Intelligence Group's analysis of STOCKSTAY, a .NET backdoor used by the Russian state-sponsored threat actor Turla for cyber e
hendryadrian.com·12d agoChina-Linked Velvet Ant Group Backdoored Linux Login Software for Nearly a Decade in Operation Highland
Security firm Sygnia has uncovered a long-running cyber espionage campaign called Operation Highland, linked to the China-nexus threat group
hendryadrian.com·25d agoNorth Korean Group Famous Chollima Compromises Packagist Package to Target PHP Developers
A cybersecurity threat report detailing how the threat actor group "Famous Chollima" (linked to North Korea) targeted PHP developers by comp
hendryadrian.com·1mo agoRussian APT Group Gamaredon Upgrades Cyber Espionage Tactics, Demanding New Enterprise Defenses
The Russian state-sponsored APT group Gamaredon (aka Aqua Blizzard, Armageddon, BlueAlpha) has significantly upgraded its cyber espionage ta
North Korean Chollima Group Targets PHP Developers via Malicious Packagist Package
A malicious obfuscated JavaScript payload was discovered appended to tailwind.js in the Packagist development version dev-drewroberts/featur
Mistic Backdoor and ModeloRAT Deployed in Financially Motivated Attacks Linked to KongTuke
A financially motivated cyberattack campaign since April 2026 deploys the Mistic backdoor (MLTBackdoor) alongside ModeloRAT, targeting insur

Comments
Sign in to join the conversation.
No comments yet. Be the first.