New threat actor, UAT-9921, leverages VoidLink framework in campaigns

2026-02-10 (Back to Inventory)

New threat actor, UAT-9921, leverages VoidLink framework in campaigns

Author(s): Aaron Boyd, Asheer Malhotra, Nick Biasini, Vitor Ventura
Organization: Cisco Talos

Open article directly Open article on Archive.org

2026-05-05 ⋅ Cisco Talos ⋅ Asheer Malhotra, Brandon White, Jungsoo An
UAT-8302 and its box full of malware
SNOWLIGHT DracuLoader FINALDRAFT SNAPPYBEE STOWAWAY VShell UAT-8302

2026-04-02 ⋅ Cisco Talos ⋅ Asheer Malhotra, Brandon White
UAT-10608: Inside a large-scale automated credential harvesting operation targeting web applications
UAT-10608

2026-03-05 ⋅ Cisco Talos ⋅ Asheer Malhotra, Brandon White
UAT-9244 targets South American telecommunication providers with three new malware implants
BruteEntry PeerTime TernDoor UAT-9244

Propose Change New threat actor, UAT-9921, leverages VoidLink framework in campaigns

Related Articles

New threat actor, UAT-9921, leverages VoidLink framework in campaigns