Malware

Attackers hacked Barracuda ESG appliances via zero-day since October 2022

backdoor, Barracuda Networks, data theft, Don't miss, exploit, Hot stuff, Malware, Mandiant, News, vulnerability /

Attackers hacked Barracuda ESG appliances via zero-day since October 2022 30/05/2023 at 20:10 By Zeljka Zorz Barracuda says that the recently discovered compromise of some of it clients’ ESG appliances via a zero-day vulnerability (CVE-2023-2868) resulted in the deployment of three types of malware and data exfiltration. The company did not say how many organizations […]

React to this headline:

Loading spinner

Attackers hacked Barracuda ESG appliances via zero-day since October 2022 Read More »

Bl00dy Ransomware Targets Indian University: Actively Exploiting PaperCut Vulnerability

APT, Bl00dy, Bl00dy ransomware, CISA, Conti, CSA, CVE-2023-27350, cybercrime, darkweb, data breach, Data leak, ERP, Helpdesk, Lockbit 3.0, Malware, Moodle, PaperCut, PaperCut MF, PaperCut NG, Port 9191, Port 9192, Ransomware, RDP, Remote Desktop Protocol, Shodan, Telegram, Threat Intelligence, Twitter /

Bl00dy Ransomware Targets Indian University: Actively Exploiting PaperCut Vulnerability 30/05/2023 at 14:46 By cybleinc CRIL analyzes Bl00dy Ransomware’s recent targeting of an Indian University via exploitation of the PaperCut vulnerability. The post Bl00dy Ransomware Targets Indian University: Actively Exploiting PaperCut Vulnerability appeared first on Cyble. This article is an excerpt from Cyble View Original Source

React to this headline:

Loading spinner

Bl00dy Ransomware Targets Indian University: Actively Exploiting PaperCut Vulnerability Read More »

PixBankBot: New ATS-Based Malware Poses Threat to the Brazilian Banking Sector

Android, Android Banking trojan, ATS, ATS Framework, Banco Central do Brasil, Banco Itaú, Bank fraud, Banking Sector, Banking Trojan, BFSI, Brazil, C6 Bank, cybercrime, darkweb, Data leak, fake app, fraud, GoatRAT, Malware, Mercado Pago, NUBank, Nubank: conta, PagBank Banco, PasteBin, PicPay, PIX, PixBankBot, PixPirate, R$, Threat Actors, Threat Intelligence /

PixBankBot: New ATS-Based Malware Poses Threat to the Brazilian Banking Sector 30/05/2023 at 12:36 By cybleinc Cyble analyzes PixBankBot, a new ATS-based malware that targets Brazilian banks through the popular Pix instant payment platform. The post PixBankBot: New ATS-Based Malware Poses Threat to the Brazilian Banking Sector appeared first on Cyble. This article is an

React to this headline:

Loading spinner

PixBankBot: New ATS-Based Malware Poses Threat to the Brazilian Banking Sector Read More »

Company size doesn’t matter when it comes to cyberattacks

attacks, Cloud, cyberattack, cybercriminals, cybersecurity, Malware, Netwrix, News, phishing, Ransomware, SMBs /

Company size doesn’t matter when it comes to cyberattacks 29/05/2023 at 06:34 By Help Net Security 65% of organizations in the enterprise sector suffered a cyberattack within the last 12 months, which is similar to the results among companies of all sizes (68%), according to Netwrix. Larger organizations are a more frequent target for cyberattacks

React to this headline:

Loading spinner

Company size doesn’t matter when it comes to cyberattacks Read More »

New Buhti ransomware uses leaked payloads and public exploits

cybercrime, Don't miss, Hot stuff, Linux, Malware, News, Ransomware, Symantec, Windows /

New Buhti ransomware uses leaked payloads and public exploits 26/05/2023 at 08:09 By Helga Labus A newly identified ransomware operation has refashioned leaked LockBit and Babuk payloads into Buhti ransomware, to launch attacks on both Windows and Linux systems. Use of public exploits One notable aspect of the attackers leveraging the Buhti ransomware is their

React to this headline:

Loading spinner

New Buhti ransomware uses leaked payloads and public exploits Read More »

Invicta Stealer Spreading Through Phony GoDaddy Refund Invoices

Blisk, BraveSoftware, ChromePlus, CocCoc Browser, Coowon, cybercrime, darkweb, Epic Privacy Browser, GoDaddy, Invicta, Iridium, Malware, QIP Surf, Sleipnir, Slimjet, Stealer, Steam, Threat Intelligence /

Invicta Stealer Spreading Through Phony GoDaddy Refund Invoices 25/05/2023 at 19:16 By cybleinc Cyble Research & Intelligence Labs analyzes Invicta, a new stealer that spreads via fake GoDaddy Refund invoices to infect users. The post Invicta Stealer Spreading Through Phony GoDaddy Refund Invoices appeared first on Cyble. This article is an excerpt from Cyble View

React to this headline:

Loading spinner

Invicta Stealer Spreading Through Phony GoDaddy Refund Invoices Read More »

Obsidian ORB Ransomware Demands Gift Cards as Payment

AES Cryptographic Provider, All, BlackSnake, Chaos Ransomware, cybercrime, darkweb, data breach, Data leak, Gift Card, Malware, Microsoft Enhanced RSA, Obsidian ORB, Obsidian ORB Ransomware, Onyx, Payday, Paysafe, Ransomware, Steam, Threat Intelligence /

Obsidian ORB Ransomware Demands Gift Cards as Payment 25/05/2023 at 09:16 By cybleinc Cyble Research & Intelligence Labs analyzes Obsidian ORB, a ransomware hybrid that demands ransom payments in the form of gift cards. The post Obsidian ORB Ransomware Demands Gift Cards as Payment appeared first on Cyble. This article is an excerpt from Cyble

React to this headline:

Loading spinner

Obsidian ORB Ransomware Demands Gift Cards as Payment Read More »

Notable DDoS Attack Tools and Services Supporting Hacktivist Operations in 2023

Artemis C2 DDoS Botnet, cybercrime, darkweb, DDoS, DDoS Attack, DDosia Project, Hacktivism, Killnet, Killnet DDoS, Malware, Neferian Empire DDoS Botnet, RedStress.io DDoS Panel, SkyElite-Net DDoS, Stressbot.io, Tesla Botnet, Threat Intelligence, Ziyaettin DDoS Botnet /

Notable DDoS Attack Tools and Services Supporting Hacktivist Operations in 2023 24/05/2023 at 18:26 By cybleinc Cyble Research & Intelligence Labs analyzes the growing use of DDoS attacks by Hacktivist groups across the world. The post Notable DDoS Attack Tools and Services Supporting Hacktivist Operations in 2023 appeared first on Cyble. This article is an

React to this headline:

Loading spinner

Notable DDoS Attack Tools and Services Supporting Hacktivist Operations in 2023 Read More »

Legitimate Android app transforms into data-snooping malware

Android, cybercrime, Don't miss, ESET, Google Play, Malware, News, Privacy, trojan /

Legitimate Android app transforms into data-snooping malware 24/05/2023 at 11:16 By Help Net Security ESET researchers have discovered a trojanized Android app named iRecorder – Screen Recorder. It was available on Google Play as a legitimate app in September 2021, with malicious functionality most likely added in August 2022. During its existence, the app was

React to this headline:

Loading spinner

Legitimate Android app transforms into data-snooping malware Read More »

New MDBotnet Unleashes DDoS Attacks

botnet DDoS, cybercrime, darkweb, DDoS, DDoS Attack, DDOS-as-a-Service, Hacktivism, Hacktivists, HTTPGetAttack, Malware, MDBotnet, MDBotnetUpdater, SlavaRussia, svhost.exe, SYN, SYNAttack, Threat Intelligence /

New MDBotnet Unleashes DDoS Attacks 23/05/2023 at 18:03 By cybleinc Cyble Research & Intelligence Labs analyzes MDBotnet, a malware variant of Russian origin, carrying out DDoS-as-a-Service attacks. The post New MDBotnet Unleashes DDoS Attacks appeared first on Cyble. This article is an excerpt from Cyble View Original Source React to this headline:

React to this headline:

Loading spinner

New MDBotnet Unleashes DDoS Attacks Read More »

New Ransomware Wave Engulfs over 200 Corporate Victims

8Base Ransomware, AES, cybercrime, darkweb, data breach, Data leak, Double encryption, Leak site, MalasLocker, Malware, MalwareHunterTeam, Ransomware, Rhysida, Threat Intelligence, Zscaler /

New Ransomware Wave Engulfs over 200 Corporate Victims 23/05/2023 at 17:34 By cybleinc CRIL analyzes multiple new Ransomware families that have affected over 200 firms, spearheaded by Rhysida, 8Base, and MalasLocker ransomware. The post New Ransomware Wave Engulfs over 200 Corporate Victims appeared first on Cyble. This article is an excerpt from Cyble View Original

React to this headline:

Loading spinner

New Ransomware Wave Engulfs over 200 Corporate Victims Read More »

CapCut Users Under Fire

ByteDance, CapCut, Cryptocurrency, Cryptography, Ethereum, Google Chrome, Malware, Offx stealer, Opera, phishing, PyInstaller, Python, RedLine Stealer, stealers, Threat Actors, TikTok, Windows 8, Zcash /

CapCut Users Under Fire 19/05/2023 at 17:04 By cybleinc CRIL has uncovered a phishing campaign that targets unsuspecting CapCut users, aiming to steal their sensitive information. The post CapCut Users Under Fire appeared first on Cyble. This article is an excerpt from Cyble View Original Source React to this headline:

React to this headline:

Loading spinner

CapCut Users Under Fire Read More »

Millions of Smartphones Distributed Worldwide With Preinstalled ‘Guerrilla’ Malware

Malware, Malware & Threats, Mobile & Wireless, smartphone /

Millions of Smartphones Distributed Worldwide With Preinstalled ‘Guerrilla’ Malware 18/05/2023 at 15:30 By Eduard Kovacs A threat actor tracked as Lemon Group has control over millions of smartphones distributed worldwide thanks to preinstalled Guerrilla malware. The post Millions of Smartphones Distributed Worldwide With Preinstalled ‘Guerrilla’ Malware appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Millions of Smartphones Distributed Worldwide With Preinstalled ‘Guerrilla’ Malware Read More »

AndoryuBot’s DDOS Rampage

All, AndoryuBot, CGSI, CISA, cybercrime, Cyble Global Sensor Network, darkweb, data breach, Data leak, DDoS, Fortinet, HTTP GET, Malware, Ransomware, RCE, Remote Control Execution, Ruckus Wireless, Telegram, Threat Intelligence /

AndoryuBot’s DDOS Rampage 17/05/2023 at 18:49 By cybleinc CRIL analyzes AndoryuBot, a new botnet exploiting a critical vulnerability to carry out large-scale DDOS attacks on Ruckus Wireless products. The post AndoryuBot’s DDOS Rampage appeared first on Cyble. This article is an excerpt from Cyble View Original Source React to this headline:

React to this headline:

Loading spinner

AndoryuBot’s DDOS Rampage Read More »

TP-Link routers implanted with malicious firmware in state-sponsored attacks

backdoor, Check Point, Don't miss, Hot stuff, Malware, News, router, TP-LINK /

TP-Link routers implanted with malicious firmware in state-sponsored attacks 17/05/2023 at 16:44 By Helga Labus A Chinese state-sponsored APT group implanted malicious firmware into TP-Link routers as part of attack campaigns aimed at European foreign affairs entities, say Check Point researchers. Custom malicious firmware for TP-Link routers The malicious firmware was exclusively created for TP-Link

React to this headline:

Loading spinner

TP-Link routers implanted with malicious firmware in state-sponsored attacks Read More »

Ducktail Malware Focuses on Targeting HR and Marketing Professionals

Avalon Organics, Brave Browser, cybercrime, darkweb, Data leak, Dropbox, DuckTail, fake app, Google Chrome, Human Resources, infostealer, L'Oreal, Malware, Marketing, Microsoft Edge, Mozilla Firefox, NIVEA, Olay /

Ducktail Malware Focuses on Targeting HR and Marketing Professionals 17/05/2023 at 15:37 By cybleinc CRIL analyzes DuckTail, a malware infostealer actively targeting HR and Marketing executives to exploit their Social Media Business Accounts. The post Ducktail Malware Focuses on Targeting HR and Marketing Professionals appeared first on Cyble. This article is an excerpt from Cyble

React to this headline:

Loading spinner

Ducktail Malware Focuses on Targeting HR and Marketing Professionals Read More »

Infamous cybercrime marketplace offers pre-order service for stolen credentials

cybercrime, cybercriminals, cybersecurity, Malware, News, SecureWorks /

Infamous cybercrime marketplace offers pre-order service for stolen credentials 17/05/2023 at 09:42 By Help Net Security Infostealer malware, which consist of code that infects devices without the user’s knowledge and steals data, remains widely available to buy through underground forums and marketplaces, with the volume of logs, or collections of stolen data, available for sale

React to this headline:

Loading spinner

Infamous cybercrime marketplace offers pre-order service for stolen credentials Read More »

Cisco Routers Exploited by Russian State-Sponsored Attackers

APT28 Exploits, Cisco, CVE-2017-6742, FBI, India, IOS Routers, IOS XE Software, Jaguar Tooth, Malware, MIBs, Russia, SNMP, TETP, Vulnerabilities /

Cisco Routers Exploited by Russian State-Sponsored Attackers 16/05/2023 at 16:53 By cybleinc Jaguar Tooth Malware deployed via exploitation of SNMP Vulnerability On April 18, 2023, the Cybersecurity and Infrastructure Agency (CISA), the US Federal Bureau of Investigation (FBI) & UK National Cyber Security Centre released the cybersecurity advisory “APT28 Exploits Known Vulnerability to Carry Out

React to this headline:

Loading spinner

Cisco Routers Exploited by Russian State-Sponsored Attackers Read More »

New trends in ransomware attacks shape the future of cybersecurity

Corvus Insurance, cybercrime, cybersecurity, Don't miss, Hot stuff, Malware, Ransomware, trends, Video /

New trends in ransomware attacks shape the future of cybersecurity 16/05/2023 at 09:23 By Help Net Security Corvus Insurance analyzed data from the dark web and ransomware leak sites. Researchers uncovered a 60% increase in ransomware victims in March 2023, marking the highest monthly victim count observed in the past two years. In this Help

React to this headline:

Loading spinner

New trends in ransomware attacks shape the future of cybersecurity Read More »

BlackSuit Ransomware Strikes Windows and Linux Users

BlackSuit, cybercrime, Cylance, darkweb, data breach, Linux, Malware, Ransomware, Royal Ransomware, Threat Intelligence, Unit 42, VMWare, Windows /

BlackSuit Ransomware Strikes Windows and Linux Users 12/05/2023 at 17:02 By cybleinc Cyble Research & Intelligence Labs analyzes a new ransomware named BlackSuit which can target Windows and Linux operating systems. The post BlackSuit Ransomware Strikes Windows and Linux Users appeared first on Cyble. This article is an excerpt from Cyble View Original Source React

React to this headline:

Loading spinner

BlackSuit Ransomware Strikes Windows and Linux Users Read More »

Scroll to Top