PowerShell

North Korean hackers spotted using ClickFix tactic to deliver malware

Don't miss, Hot stuff, Malware, News, North Korea, PowerShell, social engineering, Windows /

North Korean hackers spotted using ClickFix tactic to deliver malware 2025-02-13 at 18:34 By Zeljka Zorz North Korean state-sponsored group Kimsuky (aka Emerald Sleet, aka VELVET CHOLLIMA) is attempting to deliver malware to South Korean targets by leveraging the so-called “ClickFix” tactic. A relatively new tactic The ClickFix social engineering tactic has been dubbed thus […]

React to this headline:

Loading spinner

North Korean hackers spotted using ClickFix tactic to deliver malware Read More »

PurpleFox Resurfaces Via Spam Emails:  A Look Into Its Recent Campaign

Loader, Malware, phishing, PowerShell, PurpleFox, Spam Emails, Threat Intelligence /

PurpleFox Resurfaces Via Spam Emails:  A Look Into Its Recent Campaign 29/09/2023 at 17:32 By cybleinc Cyble Research and Intelligence Labs analyzes PurpleFox’s recent campaign that resurfaces via spam emails. The post PurpleFox Resurfaces Via Spam Emails:  A Look Into Its Recent Campaign appeared first on Cyble. This article is an excerpt from Cyble View

React to this headline:

Loading spinner

PurpleFox Resurfaces Via Spam Emails:  A Look Into Its Recent Campaign Read More »

Covert Delivery of Cobalt Strike Beacon via Sophos Phishing Website

Cobalt Strike Beacon, phishing, PowerShell, Sophos /

Covert Delivery of Cobalt Strike Beacon via Sophos Phishing Website 15/09/2023 at 17:31 By rohansinhacyblecom Key Takeaways Overview Cyble Research & Intelligence Labs (CRIL) came across a typosquatted domain of  Sophos, “sopbos[.]com”, using a VirusTotal search. The phishing site impersonates the installation of the Sophos Home. The initial infection vector is unclear at this time

React to this headline:

Loading spinner

Covert Delivery of Cobalt Strike Beacon via Sophos Phishing Website Read More »

Tatar-Language Users in the Crosshairs of Python Screenshotter

FTP, infostealer, Malware, PowerShell, Python, RAR File, ScreenShotter, TA866, Tatar /

Tatar-Language Users in the Crosshairs of Python Screenshotter 14/09/2023 at 20:17 By rohansinhacyblecom Key Takeaways • Cyble Research and Intelligence Labs (CRIL) came across Python malware capturing screenshots and sending them over FTP to remote attackers.• Proofpoint has observed similar campaigns in the recent past targeting the United States and Germany, with the perpetrator tracked

React to this headline:

Loading spinner

Tatar-Language Users in the Crosshairs of Python Screenshotter Read More »

Mallox Ransomware Implements New Infection Strategy

Automotive, Base64, Batch Script, BATloader, Construction, Consumer Goods, cybercrime, darkweb, data breach, Data leak, education, Energy & Utilities, Entertainment, Food and Beverages, healthcare, Infection chain, IT & ITES, Loader, Mallox, Mallox Ransomware, Malware, Manufacturing, Media, MSBuild.exe, Organization, Payload, PowerShell, Professional Services, Quasar RAT, Ransomware, Real Estate, Retail, Technology, Threat Activity, United States /

Mallox Ransomware Implements New Infection Strategy 22/06/2023 at 14:12 By cybleinc Cyble analyzes Mallox Ransomware’s new infection chain, leveraging BatLoader to execute ransomware payloads. The post Mallox Ransomware Implements New Infection Strategy appeared first on Cyble. This article is an excerpt from Cyble View Original Source React to this headline:

React to this headline:

Loading spinner

Mallox Ransomware Implements New Infection Strategy Read More »

Unraveling Akira Ransomware

Akira, Canada, Construction, cybercrime, data breach, Data leak, Double encryption, healthcare, Leaked data, Malware, Manufacturing, North America, PowerShell, Ransom note, Ransomware, Threat Intelligence, United States /

Unraveling Akira Ransomware 10/05/2023 at 12:33 By cybleinc CRIL analyzes Akira, a Ransomware variant that is rapidly expanding its list of targets, primarily focused on the United States and Canada. The post Unraveling Akira Ransomware appeared first on Cyble. This article is an excerpt from Cyble View Original Source React to this headline:

React to this headline:

Loading spinner

Unraveling Akira Ransomware Read More »

Scroll to Top