Palo Alto Networks

magic hound

Shamoon 2: Delivering Disttrack

Since late November 2016, the Shamoon 2 attack campaign has brought three waves of destructive attacks to organizations within Saudi Arabia. Our investigation into these attacks has unearthed more details into the method by which the threat actors delivered the Disttrack payload. We have found evidence that the actors use a combination of legitimate tools and batch scripts to deploy the Disttrack payload to hostnames known to the attackers to exist in the targeted network....

Unit 42

Mar 27, 2017

By Robert Falcone and Bryan Lee

Palo Alto Networks

Products and Services

Partners

News of the Week

Palo Alto Networks News of the Week – February 18, 2017

Did you miss any of this week’s Palo Alto Networks action? Don’t worry -- we’ve rounded up our top news and views right here:

Feb 18, 2017

By Justin Hall

Unit 42

Magic Hound Campaign Attacks Saudi Targets

Unit 42 has discovered a persistent attack campaign operating primarily in the Middle East dating back to at least mid-2016 which we have named Magic Hound. This appears to be an attack campaign focused on espi...

Feb 15, 2017

By Bryan Lee and Robert Falcone