The notorious DarkGate malware, once dormant after the Qakbot takedown, has reemerged, leveraging a clever combination of Microsoft Excel files and public Samba shares to distribute its malicious payload. This sophisticated campaign, as revealed...
A recent report from AhnLab Security Intelligence Center (ASEC) reveals new cyberattacks utilizing a novel method to distribute the AsyncRAT remote access trojan (RAT). Disguised as harmless ebooks, these malicious files are spreading through...
A new report from Imperva Threat Research reveals a concerning resurgence of the Mirai botnet, a notorious malware known for its history of large-scale distributed denial-of-service (DDoS) attacks. The research indicates that Mirai has...
Recorded Future’s Insikt Group has exposed “Vortax,” a seemingly legitimate virtual meeting software, as a sophisticated front for a massive malware operation targeting cryptocurrency users. This elaborate scheme, primarily disseminated through social media phishing...
A new, insidious phishing scam impersonating India’s Regional Transport Office (RTO) has been detected, preying on unsuspecting Android users via WhatsApp. The scam, disguised as an official notice about traffic violations, lures victims into...
A new campaign attributed to the notorious Turla APT group is exploiting a compromised website of the Philippine Daily Inquirer to deliver a fileless backdoor, as reported by G DATA Security Lab. This sophisticated...
Researchers from Avast have uncovered a critical flaw in the cryptographic schema of the notorious DoNex ransomware and its predecessors. This discovery has enabled Avast, in cooperation with law enforcement agencies, to provide a...
Halcyon’s research team has identified a new ransomware group dubbed “Volcano Demon,” responsible for a series of recent attacks. The group’s ransomware, LukaLocker, encrypts files with the .nba extension and targets both Windows and...
The AhnLab Security Intelligence Center (ASEC) has issued a warning about a new backdoor malware called HappyDoor, linked to the Kimsuky group, a North Korean state-sponsored threat actor. HappyDoor is a sophisticated and continuously...
Trend Micro, a global leader in cybersecurity, has issued a warning about a recent wave of attacks targeting misconfigured Jenkins servers. Cybercriminals are exploiting vulnerabilities in the Jenkins Script Console to illicitly install and...
A sophisticated and persistent supply chain attack targeting the popular JavaScript library jQuery has been uncovered by cybersecurity researchers at Phylum. The attack, which has been active since late May, involves the distribution of...
Palo Alto Networks’ Unit 42 threat intelligence team has published a comprehensive analysis detailing the advanced evasion techniques employed by GootLoader, a pervasive malware known for its role in delivering ransomware and other malicious...
A new wave of cyberattacks utilizing the sophisticated Mekotio banking trojan is raising alarms across Latin America, according to a recent report by Trend Micro Research. The malware, active since 2015 and primarily targeting...
The notorious Mallox ransomware gang, known for their aggressive multi-extortion tactics, has expanded their arsenal with a new Linux variant. This marks a significant shift for the group, which traditionally targeted Windows systems with...
The AhnLab Security Intelligence Center (ASEC) has issued a critical warning for all users of HTTP File Server (HFS): a recently disclosed remote code execution vulnerability (CVE-2024-23692) is actively being exploited by malicious actors....
Support Securityonline.info site. Thanks!
