https://bit.ly/47Rda8S - 🔍 Red Canary's 'Intelligence Insights' for November 2023 highlights key cybersecurity threats. The report tracks the prevalence of various cyber threats in customer environments, comparing data to previous months for trend analysis. #CyberThreatIntelligence #RedCanaryInsights 📈 Several threats trended up, while others remained stable or decreased in ranking. Notable threats include Yellow Cockatoo, Impacket, Mimikatz, Gamarue, and Raspberry Robin. LummaC2 and FakeBat made significant strides, entering the top 10 for the first time. #CyberSecurityTrends #EmergingThreats 💻 LummaC2 and FakeBat are two new threats gaining traction. LummaC2, an information stealer sold on underground forums, and FakeBat, a malware-as-a-service loader, are being increasingly adopted by adversaries. Their versatility in delivery and payload deployment makes them particularly concerning. #LummaC2 #FakeBat 🏦 Qbot, a banking trojan, reappears in the rankings. Despite its takedown in August 2023, Qbot's persistence mechanisms continue to operate in some systems. This underscores the importance of thorough remediation to prevent lingering code from being exploited by new adversaries. #Qbot #CyberHygiene 🔐 Red Canary highlights a detection opportunity for persistent threats like Qbot. Monitoring for regsvr32.exe silently executing code in the AppData\Roaming directory can help identify persistent malicious DLLs. This technique provides valuable insights into ongoing system vulnerabilities.