TA829 and UNK_GreenSec Share Tactics and Infrastructure in Ongoing Malware Campaigns

July 1, 2025 invoker category_news

Security Update News

Update Information

Title TA829 and UNK_GreenSec Share Tactics and Infrastructure in Ongoing Malware Campaigns
Update ID THN:1F74F947FFDFC5B5425BC368457F6639
Type thn
Published 2025-07-01T16:26:00
Last Updated 2025-07-01T16:26:27

Security Impact

Severity NONE

AI Analysis

AI Description TA829 and UNK_GreenSec are two threat actor groups sharing infrastructure and tactics to deliver malware. They use compromised MikroTik routers and REM Proxy services to conduct phishing campaigns. These campaigns deliver malware such as TransferLoader, which leads to ransomware like Morpheus. Their activities overlap, suggesting a potential collaboration or shared resources.
AI Severity High
AI Vendor MikroTik
AI Product MikroTik Routers
AI Version Unknown

Update Details

[description content]

View Advisory Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.