Threat Research

    Iranian Use of Cybercriminal Tactics in Destructive Cyber Attacks: 2026 Updates

    Recent escalations between Iran, the U.S., and Israel have coincided with increased cyber threat activity across the Middle East. Destructive incidents, including kinetic attacks affecting AWS data centers in the UAE and Bahrain, have disrupted regional cloud services....
    3/4/2026  0
    Read More »

    V3G4 Botnet Evolves: From DDoS to Covert Cryptomining

    An active Linux-targeting campaign is deploying a Mirai-derived botnet called V3G4, now enhanced with a stealthy, fileless-configured XMRig Monero cryptominer....
    12/4/2025  0
    Read More »

    DanaBleed: DanaBot C2 Server Memory Leak Bug

    DanaBot is a Malware-as-a-Service (MaaS) platform active since 2018, operating through an affiliate model where the developer provides the malware, C2 infrastructure, and support. Affiliates use DanaBot for credential theft, banking fraud, and other malicious activities....
    6/11/2025  0
    Read More »

    Operation Endgame 2.0: DanaBusted

    On May 22, 2025, Our team revealed further actions tied to Operation Endgame, aimed at disrupting cybercriminal groups like those behind DanaBot. This follows the original 2024 effort that targeted malware such as SmokeLoader, IcedID, and Pikabot....
    6/4/2025  0
    Read More »
    Looking for Something?
    Threat Research Categories:
    Tags

    Privacy & Security StatementTerms & Conditions
    Copyright © 2026 by Gurucul - All rights reserved.