logo

Ctrl-Alt-Int3l

ID: b05c6d19-6a95-5e9f-85b2-5650d6d05067

STIX ID: identity--b05c6d19-6a95-5e9f-85b2-5650d6d05067

Feed Type: atom

Earliest post: 2025-08-20

Latest post: 2026-05-02

Threat intelligence research, adversary profiling, campaign analysis, and deep-dive security insights — focused on tracking emerging cyber threats and providing context-rich reporting for defenders and analysts.

01/01/2020
06/04/2026
Title Date Published Describes IncidentAuthorVisible
South-East Asian Military Entities Targeted via cPanel (CVE-2026-41940)2026-05-02TrueCtrl-Alt-IntelTrue
Watch Guard! Qilin affiliate exploits network appliances for initial access2026-05-01TrueCtrl-Alt-IntelTrue
KongTuke on compromised WordPress sites, DDOS Botnets and Cybercriminal Feuds2026-04-22TrueCtrl-Alt-IntelTrue
Dissecting FudCrypt: A Real-World Malware Crypting Service Analysis2026-04-19TrueCtrl-Alt-IntelTrue
Supply-Chain Attacks, TP-Link devices & a pair of socks2026-04-10TrueCtrl-Alt-IntelTrue
The BuddyBoss Attack: Claude’s Supply-Chain Attack2026-04-03TrueCtrl-Alt-IntelTrue
The BuddyBoss Attack: Full Incident Analysis2026-04-03TrueCtrl-Alt-IntelTrue
Inside the UPMI Phishing-as-a-Service Platform2026-03-30TrueCtrl-Alt-IntelTrue
FancyBear Exposed: Major OPSEC Blunder Inside Russian Espionage Ops2026-03-16TrueCtrl-Alt-IntelTrue
FancyBear Exposed: Major OPSEC Blunder Inside Russian Espionage Ops2026-03-16TrueCtrl-Alt-IntelTrue
MuddyWater Exposed: Inside an Iranian APT operation2026-03-04TrueCtrl-Alt-IntelTrue
MuddyWater Exposed: Inside an Iranian APT operation2026-03-04TrueCtrl-Alt-IntelTrue
Investigating Suspected DPRK-Linked Crypto Intrusions2026-03-02TrueCtrl-Alt-Int3lTrue
Investigating Suspected DPRK-Linked Crypto Intrusions2026-03-02TrueCtrl-Alt-IntelTrue
Diesel Vortex: Exploring connections to Russian LLCs2026-02-23TrueCtrl-Alt-IntelTrue
Diesel Vortex: Exploring connections to Russian LLCs2026-02-23TrueCtrl-Alt-Int3lTrue
Aeternum Loader: When your C2 lives forever2026-02-16TrueCtrl-Alt-Int3lTrue
Aeternum Loader: Inside the binary2026-02-16TrueCtrl-Alt-Int3lTrue
Aeternum Loader: Inside the binary2026-02-16TrueCtrl-Alt-IntelTrue
Aeternum Loader: When your C2 lives forever2026-02-16TrueCtrl-Alt-IntelTrue
ErrTraffic Under the Hood: A look at the source code2026-01-28TrueCtrl-Alt-Int3lTrue
ErrTraffic Under the Hood: A look at the source code2026-01-28TrueCtrl-Alt-IntelTrue
Attack on *stan: Your malware, my C22026-01-21TrueCtrl-Alt-IntelTrue
Attack on *stan: Your malware, my C22026-01-21TrueCtrl-Alt-Int3lTrue
Where is the EDR? Sliver C2 running from firewalls2025-12-31TrueCtrl-Alt-IntelTrue
Where is the EDR? Sliver C2 running from firewalls2025-12-31TrueCtrl-Alt-Int3lTrue
How not to run a RaaS Operation2025-12-16TrueCtrl-Alt-Int3lTrue
How not to run a RaaS Operation2025-12-16TrueCtrl-Alt-IntelTrue
React2Shell (CVE-2025-55182) actively exploited by threat actors2025-12-08TrueCtrl-Alt-Int3lTrue
Scanning CVE-2025-55182 for the greater good2025-12-08TrueCtrl-Alt-Int3lTrue
From Campus to C2: Tracking a Persistent Chinese Operation Against Vietnamese Universities2025-08-20TrueCtrl-Alt-Int3lTrue

1–31 of 31

Built by the dogesec team. Copyright 2026.