@deepthoughts10@infosec.exchangeEver hear of the legitimate file sharing service files.catbox[.]moe? It’s really uncommon and you should probably block it in your environment.
Read Palo Alto’s overview of a DarkCloud Steamer campaign that makes use of a catbox.moe file share to distribute its payload here.
#cybersecurity #threatintel
@adulau@infosec.exchange"So, I climbed to the top of the pyramid of pain - now what?"
An interesting Human Layer Kill Chain framework.
#threatintel #threatintelligence
🔗
@deepthoughts10@infosec.exchangeDNSFilter, a #cybersecurity vendor I'm not very familiar with, published their Q1 2025 Threat Report. I think it's always good to review these reports from a #threatintel perspective.
Here's their list of TLD's with domains most likely to be malicious:
.tf