Threats Tagged 'evilcorp'
View all threats tagged with 'evilcorp'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'evilcorp'
Click on any threat for detailed analysis and mitigation recommendations
Operation Endgame vs. SocGholish Fake Updates 0 Operation Endgame is a multinational law enforcement effort that disrupted the SocGholish malware framework, which has been active since 2017. SocGholish compromises WordPress websites and uses fake browser update prompts to trick users into downloading malicious JScript payloads. This initial access vector facilitates ransomware deployment and data breaches across multiple industries including government, education, and healthcare. The malware employs domain shadowing and a four-stage attack chain involving traffic acquisition, filtering, fake update lures, and implant execution. The operation took down 106 servers and domains and remediated nearly 15,000 compromised sites. Analysis showed that 55% of Infoblox cloud customers were exposed to SocGholish in 2026, indicating widespread impact. The infrastructure has been used by multiple ransomware families and threat actors. No specific software versions are affected, and no known exploits in the wild are reported. Join the discussion | AlienVault OTX General | 06/18/2026, 14:53:53 UTC Added: 06/18/2026, 20:36:32 UTC |
Showing 1 to 1 of 1 result