#25181 What do turtles and cacti have in common?
Resolved
Created Dec 4, 2023, 9:27 PM
Resolved Dec 7, 2023, 8:25 PM
System (internal)
Dec 4, 2023, 9:27 PM
Check-in (internal)
Dec 4, 2023, 9:27 PM
20th Edition: APG Threat Digest They’re both ransomware strains the APG’s looking into. [View in browser](https://czdmH04.na1.hubspotlinks.com/Ctc/RG+113/czdmH04/VX4XzJ1-p9gZW2X9HZy1MvbC3W7nzmJr56Ggm2MBB8TF5nXHsW7lCGcx6lZ3lqW4zVx9V4jKg5FW8M_x8F8rw_fZW1gTtMN79hdtgW3mWQq5563rbbW5r9GCg4pW1KGW4W__M35SZSfwW8Xrpyr7V6Y2pW4sdPxn4c6fFTW5nYml995GvwDW7SgHFd1QT61XW6LNP1w1TzmKnW60p25F4LZztlW2Ghg9K2S4-2xW1lvymZ1FHwR7W3PTd0t56GxvNW5tDQtX7Tp2sbW6lkmK46m3SkxW1xMyWV3yKxh8N4d32FzLKK9kW1FLfdg5T8D17VqQpNM5GdPdpW7T2j_q7R-9VyVd1Z-G1DHM0mW7Jl8-g2P74t3W3B90F86LF3CDW7msLxt7lSLQBW3nNY9l5L-NkkW7jyw033lK0_sN2gJKDRtPgvNVlyVPj4J0KpSW58b0jK5c8SZVW8w1MLg3DNtGKW1Tzvsm4s8f7cW55wJwr4829hcW61TYcx4W8L6PW8VCFgB4vQ2HwW1hD4Fv2xf6GjN4DfJzygXjpBW33_Z0Q55G2FNW8vWp_v43NjtNf4qv1FC04) [embedded image](https://czdmH04.na1.hubspotlinks.com/Ctc/RG+113/czdmH04/VX4XzJ1-p9gZW2X9HZy1MvbC3W7nzmJr56Ggm2MBB8Vx3qn9gW95jsWP6lZ3n7W2L492H1DKP_dW13JDCp9hl6KPW5VlWNm438CNBN5v75trZ4GvjW2MZCr_2QGg2PW5cwTtq3BLgV-VD3QH94DF7CzW7nlRR_32gzN9W4pY2VY840WGFW26rs1t2ZfsChW8lgJCG2KWtpLW84GV2D3Tj51mVrYY4Y8l-cspW58FlwM2MM8x1W1Dp8b191QKQzW6jS5738nvdMcW8K2Yqx4V85G3W38ty0y1Ll7j0W2KDXh94grxgXW7wGdft63hFM2W8WB86K78L3T-N8mlGs-_PGh3W5VXFsq4qWJDxW8MVLvw77yLkHW77Xdg594nWChVP4NLv6YLbg2W2JnV084P9sT_W6rnk6D2zSmPPN3tStpSVq_m3VH6lC88Vrbdnf4SvGBb04) Hi artichoke.consulting, The Adversary Pursuit Group was busy last week as we headed into December (can you believe it?). They researched new ransomware strains, multiple critical vulnerabilities, passive TTPs, and more. More specifically, they looked into: - Turtle Ransomware's targeting of macOS systems - Zyxel's response to critical NAS vulnerabilities - The disruption of the Qakbot malware by the DOJ and FBI - The new Cactus ransomware campaign - Critical vulnerabilities affecting both ownCloud & Google Chrome - Okta's extensive data breach - A novel RSA key vulnerability - A severe security flaw in WPS Office - The spread of the Atomic Stealer's macOS campaign Read all about it in our blog! [Head to the Blog](https://czdmH04.na1.hubspotlinks.com/Ctc/RG+113/czdmH04/VX4XzJ1-p9gZW2X9HZy1MvbC3W7nzmJr56Ggm2MBB8Vx3qn9gW95jsWP6lZ3nVMpqrCbf-N54W8-zZ9L24_jQhW4MppvC7GnrXBVv5-3z75DtBZW44HtGd8tVYGZW3ZD7dj2y3Q3pW6CHMRV754V4sV4qPWP4_RDMQW2Dqxgn63JqtPW8tvWC_1GvytKW2J9cvN83H5DsW2SKf5h2yDSS4VHVX1d3XvsPfN18nfq9DBgN-W46sqqv9dHRpfW7mSNCc5-wvz-W8rJxqd7hZZV4W4mP7RY1T5ysvN7W3DLKdk9P5W8p_GLS10DcMGW93TLJQ32Hp0WVttphX5V5bQDW7xrMvX8pPq4SW75vBby4pTJG4W443Vl21C4rrvW7vqtZL5Hlq11W3M_9nx4XtMnSW5TfC4h7_YyPwN2bflLpc5tHwW5qG0rg7BZrxGf8lntbC04) For real-time intel and updates, don't forget to follow APG on [Twitter](https://czdmH04.na1.hubspotlinks.com/Ctc/RG+113/czdmH04/VX4XzJ1-p9gZW2X9HZy1MvbC3W7nzmJr56Ggm2MBB8TF3qn9gW7lCdLW6lZ3npW1g2wWy7f2RClW3tXTS_1W8mhxW5fDXB-38TPZHW7CKW0D8lS7dTW7-8pj02xZSDVW6Z0ksl3ChSqZW9kKL-X4z3T8zW1wvNz91HZkQLN3MTDp-MyVtwW8jZWrr20P1-cW811L6T3fxBDnW61vbTd2F6G10W1DPLBx1rz8FJVRSvB14fMxGgVgVLQz6tl4_2Mz4bMcvLzRPW44CGGQ8wlgZ3W4RbKJz7grk9nN8qcK5mdlgWNW2Ch6ZN5b-JZ7W2_tP9491WHk0W6qKtHP4llKrVW2jzPp75GkpVGW6_zzlG7pSVrjf9d__0-04) and [Reddit!](https://czdmH04.na1.hubspotlinks.com/Ctc/RG+113/czdmH04/VX4XzJ1-p9gZW2X9HZy1MvbC3W7nzmJr56Ggm2MBB8TY3qn9gW7Y8-PT6lZ3nHW6wZSll8xy_lPW2nKw-5630YC8W8Q_zmp1ZYkb-W7w7mhV1XVfqFW4rQgTV1plKnYN9lpmYZwxjCxW23frsg7wdnNVV5m-YQ1hFbNMW6Xsk1l5cy7VHW6RNRcC5r4CmxW9m58Kg7F8V3bW8tcx4R3b68rgW1CfPPp6Qkk2DW2QLh3S5YNxL5W5K9kdL6fBfkLW5_gsMt4SYV7BW5KQwvN65F48WW5-mkY81n4WbdW26WkJ78wsxTGW1MWJ821Kgkt4W776k9y2yH63rW95pz3H2Lc5NzVvLlqM64B0JfW8H2BRB5CqTJ4W5-hSJZ3H5WwCW5xYWj259h8yLf2KRSyg04) Sincerely, Blackpoint Cyber [embedded image](https://czdmH04.na1.hubspotlinks.com/Ctc/RG+113/czdmH04/VX4XzJ1-p9gZW2X9HZy1MvbC3W7nzmJr56Ggm2MBB8TF3qn9gW7lCdLW6lZ3lyW8Fkf6b40m8RhW98Tzqr78YdMgN4n-s0h-116FW6-yfKx8JGSZYN1nWw9_gtNxTW3kk1ZN94Pb8dW4H_h5z5xV8YDW5nCbzY1FKvLrW8wrl9N8PWqkQW5HgV-V859SBNW3FJ4l-7gK8wmW1VCYnf8QH1GdV3mb5_323WNvW8x6LqH4ByDtqW2Gqs3F8twYxvW34560Y7D0JTdW6S-3XZ59mqvzW82XRzn7P6Y34W2tS3YL8STLHHVRRmnw10ztYxVzgqYQ1QLRPnVtrgxr88g93vW4nw1-Q8D9vjwW6dlZ4F9bcQqCf6fP9zM04) Stay in the know! [embedded image](https://czdmH04.na1.hubspotlinks.com/Ctc/RG+113/czdmH04/VX4XzJ1-p9gZW2X9HZy1MvbC3W7nzmJr56Ggm2MBB8TY3qn9gW7Y8-PT6lZ3kRW5bFl8P2hbQDWW3TtwZB25rxfwN5rdxSNW3y0qW16LYh-51b0KTW3SlQfk8HT_sZW5PqGcF7tyPp7W10B23T937z_4W2zCKD18BZSw5VdyW4B2Szl2qW6MV2C-1Hy-9MN7xxC40Vjv5dW3zfHKv2FKMdsW5YnZ4J2VtL2YW8rP4387q_jKNW7Fyglk82W6HkW2bRqtZ4hg2z3W1zWx4T1tk9LbN8vHNd7Cz60zW1J7vF37SlQ0MW4KKv-Q2RcWwKW6lm0Jd2Fj5ztM2Fnm7NrCHfW7zT3bK6hFJcKW50mWF58ZkQpMW1JkMs446VHKVW2DJy_F2Jj7fWd8Y5wP04) [embedded image](https://czdmH04.na1.hubspotlinks.com/Ctc/RG+113/czdmH04/VX4XzJ1-p9gZW2X9HZy1MvbC3W7nzmJr56Ggm2MBB8TY3qn9gW7Y8-PT6lZ3mkW98JZGr8HxWlJV4HYy_3g5rCzW3x0Gfb49wq6zW4JsVkj6QSWzZW5hqYgz7PHnmVW9j7WYc5MGs1rW1mkrn94VP44qN44fbBvN1LKFW1R8pHF5FCtWbW1qHh_L8fG6V0W8Rq3lf9dlg4zW5rMNsg2FrdbvL1--rzxPyLW1-hNyn6pNCGXW1rBy8S9k1k35W5kqdqb3xt5DdW2gBXX_3rg99qN36KjkgD184-W41j0NM8fwbh2N2y0kGD2Sg0TW3dG6hd8vh-ZPW4ng8RG29YCwvVpGXRG6b33gPW57Xqgt1Tvhz-W3gx2vy98Wtw1W2YBJcp6JW7Yjf8dzsDv04) [embedded image](https://czdmH04.na1.hubspotlinks.com/Ctc/RG+113/czdmH04/VX4XzJ1-p9gZW2X9HZy1MvbC3W7nzmJr56Ggm2MBB8TF3qn9gW7lCdLW6lZ3p0N6M3L7vfP0mkW4MWyF46JpLF_W6STwqs5QZlYLW6q15Bn8t1QDtW3KJxdF6Csfs1W1_JHj283CZPFN2Twb6KX-1lcW16jW423_BlBxW3kzTLv6Blf4fW2hxNbF3nHXqdW3xHGwf5-_7ypVBVN4L7hRBR6W3f6nnl99C6zVW1CL1Wc5CB1lwW7B0zsx4lnZqwW4r-l7W75_18GN64hlkQ1tGsKW4CLW_C6_N5M_W4CplcL7Dp1-JW5J7Rz51Z7yyzW1wxDNY4VNS2MW2mpxdQ27k2wKW4wNZWc7KMPVtW4Qlfw55pjJglf9cbFT404) [embedded image](https://czdmH04.na1.hubspotlinks.com/Ctc/RG+113/czdmH04/VX4XzJ1-p9gZW2X9HZy1MvbC3W7nzmJr56Ggm2MBB8TY3qn9gW7Y8-PT6lZ3lkW4J_pmC163cdsW4CZYr26KXXFdVMy3dG45WxCTW17FzS_3XjvHVW2qq_4R1qJNwPW6HxjHb83WS-mVTCR7X9bwQg9VQsc1v3TjQ2vW2RpcqH1cQbj0W7Tsw_Y1gnLhxW3s9yyf8QP_2QN3_GhFR4kJNzN8vnmjN6BRdvW2-T6rV2T6m8yN3Gs9h-Fslr8W5P55M91M9gydW22_MR14RdlKcW62dPG2101kd1W3hN7Np6JWjB4W8t2mm73BtnPvN7ydlgbXY4zTW6t98LT19_YbbW7jm_1r1Wmpq-W9fgBRv6ZggFPW6Y_vpj8cglfzMYFmf1_wGhJf7G3S6j04) Give us a review on [G2](https://czdmH04.na1.hubspotlinks.com/Ctc/RG+113/czdmH04/VX4XzJ1-p9gZW2X9HZy1MvbC3W7nzmJr56Ggm2MBB8Vd3hKBbW8wLKSR6lZ3kFW4ynxTq279w3LW1Kk8rB5z37hvW5zY-206Zb7N4W8cZWw82T8NktN7hYt3Bx3CcQW3lGWjX7YFd6nW6Xkjkm1gmNx8W3k6ytq5XGjnxW1cJfPn76vzstW6lC1hC39ZNhQW8fSk6-8N3xQ-W6GlmLz98G2P4W585dWW1R3SYSW303SJW3HrZM3W6hkWNd48x0f-W6n2-6g7FxWd0W53SgTh5SXv0XW8S71Y84W-4QpW1FQ-058V_Zy7W68QwTK7-y43hW55zQ5j2jvl9_W4SjwtW8MYRv7W7dh8mX82B19_W283Z6m63Cv7yW9j3tGz8Y_z9HW2M9R7H8FdFrXMZ9q-qPnm4bM1HD8Pgmq0jf23VZ8d04) or [Channel Program](https://czdmH04.na1.hubspotlinks.com/Ctc/RG+113/czdmH04/VX4XzJ1-p9gZW2X9HZy1MvbC3W7nzmJr56Ggm2MBB8TY3hKBbW7Y8-PT6lZ3mVN8FMJCQtbjYwW2ly32X17SJxgN1qfhnw_NnhhW24Bn4b6t8cghW5g4RqF67k9TVVFfFt54s4d5ZW8Rwfk66v0PZ1W5vh6NX4W-qmvW35R8q-1ZNNXlW7JQzDm8PfQDPN5d3SN6MQlzmW1CdyhR4Bj3BnW7x7HqV3tkDmDW6G1xGy7CksN8W3w3_V-40g5FRW8LFwcr1zwM3mVKjwtq4n9X77W2kMC2m5twrBVW3dsm_K8jtvQhW1nc-Jv8PzZZrW36npzM5Br20TW2C-FBC71pCv2W4wbc6r6LPwrnVDNv8j7FsSvGW3tlCSn8HjzNGW2mtDVz47R32bf5dBSP804) | [Partner Referral Program](https://czdmH04.na1.hubspotlinks.com/Ctc/RG+113/czdmH04/VX4XzJ1-p9gZW2X9HZy1MvbC3W7nzmJr56Ggm2MBB8TY3qn9gW7Y8-PT6lZ3l-W2j-6Bt9hSJrQW85LcRg2BT97mW5wHmCB7fxk5tW4VSlq258L85YW1QsHwl6DMNjWW7cXYqH3lNHxSW5v-pxb6yGVP7N4f6xggjsHp6W6qKB9h2rQR7NW1nmw6Q5BhS9-VrNLQX5tP23YW7DbsFl3bBGWpW76Hs026lHFD3W3x81gG5DQlf3W423vXp7RTwpzW3YNZGS7mf2J0W59HmXH14rvsYW6JdWhD6XT_X_W3--ysZ8wbvn6W1pfFWh6M7GPgW5Scwcw1Z7ZGMW1kdjst6Xbm0sW4rb6qY4G5cryW4r4dr_4mLvGMW8qPQ1s5kNlhnW5PmrLN25cQQmf1SZ2sW04) Copyright Blackpoint Cyber 2023, All rights reserved. Blackpoint Cyber, 6031 University Boulevard, Suite 230, Ellicott City, MD, 21043, United States You have opted in to receive emails from Blackpoint Cyber under the Industry & Threat Intelligence subscription. [Unsubscribe](https://hs-4759974.s.hubspotemail.net/hs/manage-preferences/unsubscribe-all?languagePreference=en&d=VnhTrR77_-dYW127l_l45SB6dW2m1xjx3SYM0VW3XWzVk43TDd9W3Z_sHT3NqC1wN70SPCBmWFfnW935Hw-8pCLb1V25yk48JlGJRN786zYfWtgs4N6FF6-YXk_7QVbw7QJ1CDdSVW4QlcC29lgkNdw3GJSY45dL2&v=3&utm_campaign=2023_threat-digest&utm_source=hs_email&utm_medium=email&utm_content=285173269&_hsenc=p2ANqtz-8Y-5geaBOnrsgJW1m7wfFfr4dbpSUaxrG5UJsPuRm11011zOfM_CUdF7rLogwT8nS-26gCSduxXxl4ANARjcAbumxHaD1f6hi2spbBaVLnQS-6Apg&_hsmi=285173271)[Manage Preferences](https://hs-4759974.s.hubspotemail.net/hs/manage-preferences/unsubscribe?languagePreference=en&d=VnhTrR77_-dYW127l_l45SB6dW2m1xjx3SYM0VW3XWzVk43TDd9W3Z_sHT3NqC1wN70SPCBmWFfnW935Hw-8pCLb1V25yk48JlGJRN786zYfWtgs4N6FF6-YXk_7QVbw7QJ1CDdSVW4QlcC29lgkNdw3GJSY45dL2&v=3&utm_campaign=2023_threat-digest&utm_source=hs_email&utm_medium=email&utm_content=285173269&_hsenc=p2ANqtz-8Y-5geaBOnrsgJW1m7wfFfr4dbpSUaxrG5UJsPuRm11011zOfM_CUdF7rLogwT8nS-26gCSduxXxl4ANARjcAbumxHaD1f6hi2spbBaVLnQS-6Apg&_hsmi=285173271) [embedded image]
| Started | Ended | Hours | Notes |
|---|---|---|---|
| No time entries | |||