ReversingLabs researchers have uncovered a malicious package named “legacyreact-aws-s3-typescript” on the npm registry. The package, designed to mimic a legitimate tool for uploading files to Amazon S3 buckets, was found to contain a hidden...
Trustwave SpiderLabs has uncovered a dangerous cyberattack campaign targeting users of the popular network scanning tool, Advanced IP Scanner. Threat actors are distributing a compromised version of the installer through a typo-squatted domain, which...
A critical vulnerability, designated CVE-2024-4978, has been discovered in Justice AV Solutions (JAVS) Viewer software, a widely used audio-visual recording solution for courtrooms and other legal settings. This backdoor, stealthily introduced in version 8.3.7...
A sophisticated Android backdoor known as “Wpeeper” has abruptly ceased activity after a short but potent campaign, sparking alarm within the cybersecurity community. Researchers at XLab, who uncovered the operation, discovered Wpeeper masquerading as...
In a striking revelation, the cybersecurity world has been alerted to a novel and sophisticated cyber espionage campaign orchestrated by APT29, a notorious threat group believed to be operating under the auspices of Russia’s...
Security researchers at GuidePoint have uncovered a new weapon in the BianLian ransomware gang’s arsenal – a PowerShell backdoor. This shift in tactics appears to be a direct response to the release of a...
According to a recent report by the cybersecurity firm ESET, the Iranian government-sponsored group OilRig deployed three distinct malicious software loaders in 2022 to maintain persistent access to organizations in Israel. The deployed tools...
A new predator emerges, its modus operandi is as cunning as it is insidious. Dubbed TA4557, this group has orchestrated an elaborate scheme, exploiting the unsuspecting world of job recruitment. Their latest stratagem, refined...
In the shadowy realm of cyber warfare, the Sandman APT group emerges as a formidable force. Associated with China-based threat clusters, Sandman exemplifies the escalating sophistication in global cyber espionage, particularly with its adoption...
In the ever-evolving landscape of cybersecurity threats, malware operators continuously refine their tactics to evade detection and compromise unsuspecting systems. IBM X-Force researchers reveal the WailingCrab malware family, initially discovered in December 2022, exemplifies...
Cybersecurity experts from Aon’s Stroz Friedberg division have discovered a new threat called Effluence, which is a backdoor that exploits recently discovered vulnerabilities in Atlassian Confluence Data Center and Server. The researchers published a...
APT41, a Chinese cyber espionage group active since 2012, is known for its advanced tactics, techniques, and procedures (TTPs), including the use of custom-built malware and tools. The group is notorious for high-profile attacks...
Writing custom backdoor payloads with C# This workshop aims to provide attendees hands-on experience on writing custom backdoor payloads using C# for the most common command and control frameworks including Metasploit, Powershell Empire, and...
Recently, Lenovo engineers found backdoors in RackSwitch and BladeCenter network switch firmware. Earlier this week, the company has released a firmware update. Lenovo said it acquired an internal security audit of the acquired company’s firmware and...
Ares is a Python Remote Access Tool. Warning: Only use this software according to your current legislation. Misuse of this software can raise legal and ethical issues which I don’t support nor can be...
Support Securityonline.info site. Thanks!
