Malware

Russian Turla Cyberspies Target Polish NGOs With New Backdoor

backdoor, Malware, Malware & Threats, Nation-State, Russia, Turla /

Russian Turla Cyberspies Target Polish NGOs With New Backdoor 2024-02-22 at 18:01 By Ionut Arghire Russian state-sponsored threat actor Turla has been using a new backdoor in recent attacks targeting Polish NGOs. The post Russian Turla Cyberspies Target Polish NGOs With New Backdoor appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS […]

Russian Turla Cyberspies Target Polish NGOs With New Backdoor Read More »

Threat Actors Quick to Abuse ‘SSH-Snake’ Worm-Like Tool

Malware, Malware & Threats, worm /

Threat Actors Quick to Abuse ‘SSH-Snake’ Worm-Like Tool 2024-02-22 at 18:01 By Ionut Arghire Threat actors are actively deploying the recently released self-replicating and self-propagating SSH-Snake worm. The post Threat Actors Quick to Abuse ‘SSH-Snake’ Worm-Like Tool appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

Threat Actors Quick to Abuse ‘SSH-Snake’ Worm-Like Tool Read More »

Redis Servers Targeted With New ‘Migo’ Malware

Malware, Malware & Threats, Redis /

Redis Servers Targeted With New ‘Migo’ Malware 2024-02-21 at 14:47 By Ionut Arghire Attackers weaken Redis instances to deploy the new Migo malware and install a rootkit and cryptominers. The post Redis Servers Targeted With New ‘Migo’ Malware appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

Redis Servers Targeted With New ‘Migo’ Malware Read More »

Alleged Raccoon Infostealer operator extradited, verification site set up for victims

cybercrime, cybersecurity, DOJ, FBI, Malware, News, Ukraine /

Alleged Raccoon Infostealer operator extradited, verification site set up for victims 2024-02-21 at 05:31 By Help Net Security A Ukrainian national was extradited to the United States from the Netherlands after being indicted for crimes related to fraud, money laundering, and aggravated identity theft. According to court documents, Mark Sokolovsky conspired to operate the Raccoon

Alleged Raccoon Infostealer operator extradited, verification site set up for victims Read More »

Anatsa Android Banking Trojan Continues to Spread via Google Play

Android trojan, Malware, Malware & Threats, Mobile & Wireless /

Anatsa Android Banking Trojan Continues to Spread via Google Play 2024-02-20 at 14:16 By Ionut Arghire Recent Anatsa Android banking trojan attacks have become more targeted, showing an evolution in tactics. The post Anatsa Android Banking Trojan Continues to Spread via Google Play appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

Anatsa Android Banking Trojan Continues to Spread via Google Play Read More »

AsukaStealer, a Revamped Version of the ObserverStealer, Advertised as Malware-as-a-Service

Malware, Stealer /

AsukaStealer, a Revamped Version of the ObserverStealer, Advertised as Malware-as-a-Service 2024-02-20 at 09:31 By neetha871ad236bd Cyble analyzes the resurgence of Observer stealer, as AsukaStealer under a Malware-as-a-Service model The post AsukaStealer, a Revamped Version of the ObserverStealer, Advertised as Malware-as-a-Service appeared first on Cyble. This article is an excerpt from Cyble View Original Source

AsukaStealer, a Revamped Version of the ObserverStealer, Advertised as Malware-as-a-Service Read More »

Clean links and sophisticated scams mark new era in email attacks

Artificial Intelligence, cybercriminals, Email, Malware, News, phishing, report, social engineering, VIPRE Security /

Clean links and sophisticated scams mark new era in email attacks 2024-02-20 at 06:05 By Help Net Security Analysis of 7 billion emails shows clean links are duping users, malicious EML attachments increased 10-fold in Q4, and social engineering attacks are at all-time highs, according to VIPRE Security. The rise of the EML file attachments

Clean links and sophisticated scams mark new era in email attacks Read More »

Ukrainian Raccoon Infostealer Operator Extradited to US

charged, extradited, Malware, Malware & Threats, Tracking & Law Enforcement /

Ukrainian Raccoon Infostealer Operator Extradited to US 2024-02-19 at 17:17 By Ionut Arghire Alleged Raccoon Infostealer operator Mark Sokolovsky is awaiting trial in the US, after being extradited from the Netherlands. The post Ukrainian Raccoon Infostealer Operator Extradited to US appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

Ukrainian Raccoon Infostealer Operator Extradited to US Read More »

Ukrainian Pleads Guilty in US to Key Role in Zeus, IcedID Malware Operations

cybercrime, guilty, Malware, Malware & Threats /

Ukrainian Pleads Guilty in US to Key Role in Zeus, IcedID Malware Operations 2024-02-16 at 12:31 By Eduard Kovacs Ukrainian national Vyacheslav Igorevich Penchukov has pleaded guilty to holding key roles in the Zeus and IcedID malware operations. The post Ukrainian Pleads Guilty in US to Key Role in Zeus, IcedID Malware Operations appeared first

Ukrainian Pleads Guilty in US to Key Role in Zeus, IcedID Malware Operations Read More »

iOS users beware: GoldPickaxe trojan steals your facial data

China, cybercrime, cybercriminals, cybersecurity, Don't miss, Group-IB, iOS, iPhone, Malware, News, smartphones, trojan /

iOS users beware: GoldPickaxe trojan steals your facial data 2024-02-15 at 12:16 By Help Net Security Group-IB uncovered a new iOS trojan designed to steal users’ facial recognition data, identity documents, and intercept SMS. The trojan, dubbed GoldPickaxe.iOS by Group-IB’s Threat Intelligence unit, has been attributed to a Chinese-speaking threat actor codenamed GoldFactory, responsible for

iOS users beware: GoldPickaxe trojan steals your facial data Read More »

Understanding the tactics of stealthy hunter-killer malware

credentials, cybercrime, cybersecurity, machine learning, Malware, News, Picus Security, report, threats /

Understanding the tactics of stealthy hunter-killer malware 2024-02-15 at 06:31 By Help Net Security Picus Security has revealed a rise in hunter-killer malware, highlighting a significant shift in adversaries’ capability to pinpoint and thwart advanced enterprise defenses, including next-gen firewalls, antivirus programs, and EDR systems. There was a 333% increase in malware that can actively

Understanding the tactics of stealthy hunter-killer malware Read More »

Ransomware tactics evolve, become scrappier

cybercrime, cybersecurity, Malware, Malwarebytes, News, Ransomware, report, survey /

Ransomware tactics evolve, become scrappier 2024-02-12 at 07:02 By Help Net Security As we enter 2024, ransomware remains the most significant cyberthreat facing businesses, according to Malwarebytes. Malwarebytes reveals that the United States accounted for almost half of all ransomware attacks in 2023. “Small and medium-sized organizations face a deluge of cyber threats daily including

Ransomware tactics evolve, become scrappier Read More »

As-a-Service tools empower criminals with limited tech skills

cybercrime, cybersecurity, Darktrace, Malware, News, Ransomware, report, survey /

As-a-Service tools empower criminals with limited tech skills 2024-02-08 at 06:01 By Help Net Security As-a-service attacks continue to dominate the threat landscape, with Malware-as-a-Service (MaaS) and Ransomware-as-a-Service (RaaS) tools making up the majority of malicious tools in use by attackers, according to Darktrace. Cybercriminals exploit as-a-Service tools As-a-Service tools can provide attackers with everything

As-a-Service tools empower criminals with limited tech skills Read More »

Chinese hackers breached Dutch Ministry of Defense

Don't miss, EU, Fortinet, Government, government-backed attacks, Hot stuff, Malware, News, Remote Access Trojan, vulnerability /

Chinese hackers breached Dutch Ministry of Defense 2024-02-07 at 16:46 By Helga Labus Chinese state-sponsored hackers have breached the Dutch Ministry of Defense (MOD) last year and deployed a new remote access trojan (RAT) malware to serve as a backdoor. “The effects of the intrusion were limited because the victim network was segmented from the

Chinese hackers breached Dutch Ministry of Defense Read More »

Doppelganger Dilemma: New XPhase Clipper’s Proliferation via Deceptive Crypto Sites and Cloned YouTube Videos

Clipper, Cryptominer, Malware /

Doppelganger Dilemma: New XPhase Clipper’s Proliferation via Deceptive Crypto Sites and Cloned YouTube Videos 2024-02-07 at 13:17 By neetha871ad236bd Key Takeaways  Overview  CRIL has identified a malware campaign aimed at cryptocurrency users. In this campaign, Threat Actors (TA) employed deceptive websites masquerading as legitimate cryptocurrency applications. Notably, we encountered several phishing sites targeting users of

Doppelganger Dilemma: New XPhase Clipper’s Proliferation via Deceptive Crypto Sites and Cloned YouTube Videos Read More »

FritzFrog botnet exploits Log4Shell, PwnKit vulnerabilities

Akamai, botnet, Don't miss, exploit, Hot stuff, Linux, Log4j, Malware, News, vulnerability /

FritzFrog botnet exploits Log4Shell, PwnKit vulnerabilities 2024-02-01 at 17:31 By Helga Labus The FritzFrog cryptomining botnet has new potential for growth: a recently analyzed variant of the bot is exploiting the Log4Shell (CVE-2021-44228) and PwnKit (CVE-2021-4034) vulnerabilities for lateral movement and privilege escalation. The FritzFrog botnet The FritzFrog botnet, initially identified in August 2020, is

FritzFrog botnet exploits Log4Shell, PwnKit vulnerabilities Read More »

Threat actor used Vimeo, Ars Technica to serve second-stage malware

cybercrime, Don't miss, EU, Hot stuff, Malware, Mandiant, News, theft, USB devices /

Threat actor used Vimeo, Ars Technica to serve second-stage malware 2024-02-01 at 12:31 By Zeljka Zorz A financially motivated threat actor tracked as UNC4990 is using booby-trapped USB storage devices and malicious payloads hosted on popular websites such as Ars Technica, Vimeo, GitHub and GitLab to surreptitiously deliver malware. Another interesting detail about UNC4990 it’s

Threat actor used Vimeo, Ars Technica to serve second-stage malware Read More »

Greenbean: Latest Android Banking Trojan Leveraging Simple RealTime Server (SRS) for C&C Communication

Android, Banking Trojan, Malware, trojan /

Greenbean: Latest Android Banking Trojan Leveraging Simple RealTime Server (SRS) for C&C Communication 2024-02-01 at 08:17 By neetha871ad236bd Cyble analyzes GreenBean, a new Android Banking Trojan leveraging Simple RealTime Server (SRS) for C&C Communication The post Greenbean: Latest Android Banking Trojan Leveraging Simple RealTime Server (SRS) for C&C Communication appeared first on Cyble. The post

Greenbean: Latest Android Banking Trojan Leveraging Simple RealTime Server (SRS) for C&C Communication Read More »

Free ransomware recovery tool White Phoenix now has a web version

cybercrime, cybersecurity, disaster recovery, Don't miss, Hot stuff, Malware, News, Ransomware, software /

Free ransomware recovery tool White Phoenix now has a web version 2024-01-31 at 10:17 By Help Net Security White Phoenix is a free ransomware recovery tool for situations where files are encrypted with intermittent encryption. It was tested on BlackCat/ALPHV Ransomware, Play Ransomware, Qilin/Agenda Ransomware, BianLian Ransomware, and DarkBit. Intermittent encryption occurs when ransomware chooses

Free ransomware recovery tool White Phoenix now has a web version Read More »

Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware

Blackwood, China, espionage, Malware, Malware & Threats, Nation-State /

Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware 2024-01-26 at 14:02 By Ionut Arghire The China-linked cyberespionage group Blackwood has been caught delivering malware to entities in China and Japan.  The post Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware Read More »

Scroll to Top