Tag

Proxy

3 briefs RSS

Mirax RAT Targeting Android Users in Europe

Mirax RAT, a new Android RAT distributed as MaaS, is targeting European users by turning infected devices into residential proxy nodes and enabling credential theft via overlay and notification injection.

android rat mirax malware-as-a-service proxy

2r 4t 2w ago

medium advisory

Potential Protocol Tunneling via Yuze

2 rules 3 TTPs

This alert detects potential protocol tunneling activity via the execution of Yuze, a lightweight open-source tunneling tool often used by threat actors for intranet penetration via forward and reverse SOCKS5 proxy tunneling.

Defender XDR +2 command-and-control tunneling yuze proxy

2r 3t Jan 2, 2024

high advisory

Okta User Session Start via Anonymizing Proxy Service

2 rules 1 TTP

Detection of Okta user sessions initiated through anonymizing proxy services, potentially indicating malicious activity or attempts to evade security controls.

Okta identity proxy defense-evasion

2r 1t Jan 2, 2024