Jerri P's Avatar

Jerri P

@whoisnt

Threat Research @ Recorded Future

42
Followers 53
Following 2
Posts 26.08.2025
Joined
Posts Following

Latest posts by Jerri P @whoisnt

CastleLoader in the wild! Four distinct activity clusters, sector-specific targeting of logistics, and high-end tooling like Matanbuchus and CastleRAT.

09.12.2025 15:43 πŸ‘ 3 πŸ” 2 πŸ’¬ 0 πŸ“Œ 0
Post image

Recorded Future’s Insikt Group uncovered four GrayBravo activity clusters. TAG-160 impersonates logistics firms, while TAG-161 impersonates Booking.com, employing ClickFix to deliver CastleLoader and Matanbuchus. www.recordedfuture.com/research/gra...

09.12.2025 11:25 πŸ‘ 6 πŸ” 5 πŸ’¬ 0 πŸ“Œ 0
Preview
β€˜Neutral’ internet governance enables sanctions evasion Internet service providers and hosting companies enable cybercrime and cyber operations. Why don’t sanctions stop them?

In his latest for Binding Hook, @lawrencesec.bsky.social looks at how internet service providers work within the system to evade sanctions and enable #cyberattacks and #disinformation campaigns: bindinghook.com/neutral-inte...

21.10.2025 07:19 πŸ‘ 6 πŸ” 2 πŸ’¬ 0 πŸ“Œ 3

CastleRAT is here πŸ€

04.09.2025 15:20 πŸ‘ 7 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0