Threats Tagged 'golden gh0st rat'
View all threats tagged with 'golden gh0st rat'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'golden gh0st rat'
Click on any threat for detailed analysis and mitigation recommendations
Introducing CylindricalCanine: The GoldenEyeDog subgroup responsible for the April DigiCert incident 0 The CylindricalCanine subgroup of the Chinese cybercrime group GoldenEyeDog has been active since 2015, targeting primarily finance organizations in the Asia Pacific region. In April 2026, they compromised a DigiCert support member's device to steal code-signing certificates, which were then used to sign their malware. Their malware employs DLL sideloading, custom WebSocket protocols for command and control, and includes capabilities such as remote access, credential theft, keylogging, SOCKS proxy tunneling, and RDP backdoor creation. The group uses legitimate executables to load malicious DLLs that decrypt payloads disguised as log files. This threat leverages stolen legitimate certificates to bypass Windows SmartScreen protections since 2024. Join the discussion | AlienVault OTX General | 07/16/2026, 02:29:54 UTC Added: 07/16/2026, 10:17:37 UTC |
Showing 1 to 1 of 1 result