Malware

Earth Minotaur: MOONSHINE Exploit Kit and DarkNimbus Backdoor Threaten Multi-Platform Security

• Cyber Security
• Malware

Earth Minotaur: MOONSHINE Exploit Kit and DarkNimbus Backdoor Threaten Multi-Platform Security

Do Son December 6, 2024 0

A sophisticated cyber campaign orchestrated by the threat actor Earth Minotaur has been uncovered by Trend Micro...

Read More Read more about Earth Minotaur: MOONSHINE Exploit Kit and DarkNimbus Backdoor Threaten Multi-Platform Security

Sophisticated Campaign Targets Manufacturing Industry with Lumma Stealer and Amadey Bot

• Cyber Security
• Malware

Sophisticated Campaign Targets Manufacturing Industry with Lumma Stealer and Amadey Bot

Do Son December 6, 2024 0

Cyble Research and Intelligence Labs (CRIL) has uncovered a multi-stage cyberattack campaign targeting the manufacturing industry. Leveraging...

Read More Read more about Sophisticated Campaign Targets Manufacturing Industry with Lumma Stealer and Amadey Bot

iVerify Unveils Disturbing Prevalence of Pegasus Spyware on Mobile Devices

• Malware

iVerify Unveils Disturbing Prevalence of Pegasus Spyware on Mobile Devices

Do Son December 5, 2024 0

In an investigation, iVerify has revealed the pervasive presence of the notorious Pegasus spyware in mobile devices,...

Read More Read more about iVerify Unveils Disturbing Prevalence of Pegasus Spyware on Mobile Devices

Russian Hacker Secret Blizzard Hijack C2 Infrastructure in New Espionage Campaign

• Cyber Security
• Malware

Russian Hacker Secret Blizzard Hijack C2 Infrastructure in New Espionage Campaign

Do Son December 5, 2024 0

Lumen’s Black Lotus Labs has uncovered an elaborate campaign by the Russian threat actor Secret Blizzard (also...

Read More Read more about Russian Hacker Secret Blizzard Hijack C2 Infrastructure in New Espionage Campaign

DroidBot: A New Android Threat Exposes Global Financial Institutions

• Malware

DroidBot: A New Android Threat Exposes Global Financial Institutions

Do Son December 5, 2024 0

A recent investigation by the Cleafy Threat Intelligence and Response (TIR) team has uncovered DroidBot, a sophisticated...

Read More Read more about DroidBot: A New Android Threat Exposes Global Financial Institutions

Black Basta Resurgence: Social Engineering Campaign Delivers Zbot, DarkGate, and Custom Malware

• Malware

Black Basta Resurgence: Social Engineering Campaign Delivers Zbot, DarkGate, and Custom Malware

Do Son December 5, 2024 0

The notorious Black Basta ransomware group is back, employing sophisticated social engineering tactics and deploying advanced malware...

Read More Read more about Black Basta Resurgence: Social Engineering Campaign Delivers Zbot, DarkGate, and Custom Malware

New Andromeda/Gamarue Command-and-Control Cluster Targets APAC Industries

• Malware

New Andromeda/Gamarue Command-and-Control Cluster Targets APAC Industries

Do Son December 4, 2024 0

In a recent report, the Cybereason Security Services Team unveiled the discovery of a new cluster of...

Read More Read more about New Andromeda/Gamarue Command-and-Control Cluster Targets APAC Industries

Akira v2 Emerges: Rust-Based Ransomware Raises the Stakes

• Malware

Akira v2 Emerges: Rust-Based Ransomware Raises the Stakes

Do Son December 4, 2024 0

The Akira ransomware took a significant leap earlier this year with the introduction of a new Rust-based...

Read More Read more about Akira v2 Emerges: Rust-Based Ransomware Raises the Stakes

Beware of Celestial Stealer: New MaaS Targets Browsers and Crypto Wallets

• Malware

Beware of Celestial Stealer: New MaaS Targets Browsers and Crypto Wallets

Do Son December 4, 2024 0

A new report from Trellix Advanced Research Center has exposed the inner workings of Celestial Stealer, a...

Read More Read more about Beware of Celestial Stealer: New MaaS Targets Browsers and Crypto Wallets

RECOPE, Costa Rica’s State-Owned Energy Provider, Grapples with Ransomware Attack and Fuel Supply Disruption

• Cyber Security
• Malware

RECOPE, Costa Rica’s State-Owned Energy Provider, Grapples with Ransomware Attack and Fuel Supply Disruption

Do Son December 4, 2024 0

Refinadora Costarricense de Petróleo (RECOPE), the state-owned entity responsible for Costa Rica’s fuel supply chain, has been...

Read More Read more about RECOPE, Costa Rica’s State-Owned Energy Provider, Grapples with Ransomware Attack and Fuel Supply Disruption

Solana Web3.js Library Compromised in Targeted Supply Chain Attack

• Malware

Solana Web3.js Library Compromised in Targeted Supply Chain Attack

Do Son December 3, 2024 0

A sophisticated supply chain attack has been identified within the widely-used @solana/web3.js JavaScript library, potentially jeopardizing the security...

Read More Read more about Solana Web3.js Library Compromised in Targeted Supply Chain Attack

Threat Actors Exploiting Misconfigured Docker Remote API Servers with Gafgyt Malware

• Malware

Threat Actors Exploiting Misconfigured Docker Remote API Servers with Gafgyt Malware

Do Son December 3, 2024 0

Trend Micro Research has revealed a significant evolution in the behavior of the Gafgyt malware (also known...

Read More Read more about Threat Actors Exploiting Misconfigured Docker Remote API Servers with Gafgyt Malware

RevC2 and Venom Loader Exploit MaaS in Advanced Campaigns

• Malware

RevC2 and Venom Loader Exploit MaaS in Advanced Campaigns

Do Son December 2, 2024 0

The latest findings from ThreatLabz reveal two novel malware families, RevC2 and Venom Loader, actively deployed in...

Read More Read more about RevC2 and Venom Loader Exploit MaaS in Advanced Campaigns

New Report Reveals SmokeLoader’s Advanced Tactics in Taiwan Campaign

• Malware
• Vulnerability

New Report Reveals SmokeLoader’s Advanced Tactics in Taiwan Campaign

Do Son December 2, 2024 0

A recent report by FortiGuard Labs has highlighted a targeted cyberattack involving the infamous SmokeLoader malware. This...

Read More Read more about New Report Reveals SmokeLoader’s Advanced Tactics in Taiwan Campaign

Horns&Hooves Campaign Leverages NetSupport and BurnsRAT for Widespread Compromise

• Malware

Horns&Hooves Campaign Leverages NetSupport and BurnsRAT for Widespread Compromise

Do Son December 2, 2024 0

In a detailed report by Kaspersky Labs, the Horns&Hooves campaign emerges as a notable example of cybercriminal...

Read More Read more about Horns&Hooves Campaign Leverages NetSupport and BurnsRAT for Widespread Compromise

Zero-Day Attack Alert: Corrupted Files Weaponized in New Attacks

• Malware

Zero-Day Attack Alert: Corrupted Files Weaponized in New Attacks

Do Son December 2, 2024 0

A new 0-day attack leverages file corruption to slip past antivirus and sandbox defenses. A sophisticated new...

Read More Read more about Zero-Day Attack Alert: Corrupted Files Weaponized in New Attacks

Security Alert: Bootkitty Bootkit Targets Linux via UEFI Vulnerability (CVE-2023-40238)

• Malware
• Vulnerability

Security Alert: Bootkitty Bootkit Targets Linux via UEFI Vulnerability (CVE-2023-40238)

Do Son December 1, 2024 0

Security researchers from Binarly and ESET have uncovered “Bootkitty,” the first-ever UEFI bootkit designed to target Linux...

Read More Read more about Security Alert: Bootkitty Bootkit Targets Linux via UEFI Vulnerability (CVE-2023-40238)

Operation “Code on Toast”: A Deep Dive into TA-RedAnt’s Exploitation of Zero-Day Flaw (CVE-2024-38178)

• Cyber Security
• Malware
• Vulnerability

Operation “Code on Toast”: A Deep Dive into TA-RedAnt’s Exploitation of Zero-Day Flaw (CVE-2024-38178)

Do Son December 1, 2024 0

North Korean-linked hacking group TA-RedAnt has been implicated in a sophisticated large-scale cyber attack dubbed “Operation Code...

Read More Read more about Operation “Code on Toast”: A Deep Dive into TA-RedAnt’s Exploitation of Zero-Day Flaw (CVE-2024-38178)

Windows Tool Weaponized: Wevtutil.exe Exploited in Novel Attack

• Malware

Windows Tool Weaponized: Wevtutil.exe Exploited in Novel Attack

Do Son December 1, 2024 0

Security researchers have exposed a new aspect in the Living Off the Land Binaries and Scripts (LOLBAS)...

Read More Read more about Windows Tool Weaponized: Wevtutil.exe Exploited in Novel Attack

Malicious PyPI Package Targets Cryptocurrency Wallets: aiocpa Campaign Exposed

• Malware

Malicious PyPI Package Targets Cryptocurrency Wallets: aiocpa Campaign Exposed

Do Son November 29, 2024 0

Cybersecurity researchers at ReversingLabs have uncovered a stealthy supply chain attack targeting cryptocurrency wallets via the PyPI...

Read More Read more about Malicious PyPI Package Targets Cryptocurrency Wallets: aiocpa Campaign Exposed