Antiy AVL SDK Anti-Virus Engine Upgrade Announcement (20230218)

Based on the principles of transparency, accessibility, usability, verifiability and perceptibility of security capabilities, Antiy releases weekly updates of the AVL SDK anti-virus engine and the full set of capabilities to the public every week. 1. Weekly Update Statistical period: Februa……

Continue Reading

Analysis of the Active Hoze Mining Trojan

The original report is in Chinese, and this version is an AI-translated edition. Download PDF View in Chinese 1.Overview Recently, Antiy CERT captured a batch of active hoze mining trojan samples through the Attack Capture System [1] .This mining trojan mainly attacks the Linux……

Continue Reading

Antiy AVL SDK Anti-Virus Engine Upgrade Announcement (20230225)

Based on the principles of transparency, accessibility, usability, verifiability and perceptibility of security capabilities, Antiy releases weekly updates of the AVL SDK anti-virus engine and the full set of capabilities to the public every week. 1. Weekly Update Statistical period: Februa……

Continue Reading

Analysis of Phishing Activities Using the GuLoader to deliver AgentTesla

The original report is in Chinese, and this version is an AI-translated edition. Download PDF View in Chinese 1.Overview In recent years, the AgentTesla Trojan horse continues to be active, and Antiy CERT has repeatedly monitored attacks on domestic government, enterprise and i……

Continue Reading

The Rattlesnake Organization Used Epidemic Themes to Launch Attacks against China

The original report is in Chinese, and this version is an AI-translated edition. Download PDF View in Chinese 1.Overview In November 2022, Antiy CERT found a case of spear-phishing mail from an Indian direction rattlesnake organization targeting a Chinese university. The at……

Continue Reading

Analysis and Response to ATW’s Data Breach Incident in China

The original report is in Chinese, and this version is an AI-translated edition. Download PDF View in Chinese 1.Overview Since October 2021, a hacker group called “AgainstTheWest” (ATW) has attacked platforms such as SonarQube, Gitblit and Gogs, stealing codes and d……

Continue Reading

Analysis of Attack Activities Using Spam to Spread Remote Control Trojans

The original report is in Chinese, and this version is an AI-translated edition. Download PDF View in Chinese 1.Overview Recently, the Harbin Institute of Technology and Antiy Joint CERT Labs has monitored multiple attacks using spam to spread remote control Trojans. Attackers ……

Continue Reading

Antiy AVL SDK Anti-Virus Engine Upgrade Announcement (20230211)

Based on the principles of transparency, accessibility, usability, verifiability and perceptibility of security capabilities, Antiy releases weekly updates of the AVL SDK anti-virus engine and the full set of capabilities to the public every week. 1. Weekly Update Statistical period: Februa……

Continue Reading

2022 Active Mining Trojan Review

The original report is in Chinese, and this version is an AI-translated edition. Download PDF View in Chinese 1.Overview Mining Trojans use various means to implant mining programs into victims’ computers, and use the computing power of victims’ computers to mine wi……

Continue Reading

Antiy AVL SDK Anti-Virus Engine Upgrade Announcement (20230204)

Based on the principles of transparency, accessibility, usability, verifiability and perceptibility of security capabilities, Antiy releases weekly updates of the AVL SDK anti-virus engine and the full set of capabilities to the public every week. 1. Weekly Update Statistical period: Januar……

Continue Reading