June 27, 2022
Via: The Hacker NewsA malware-as-a-service (Maas) dubbed Matanbuchus has been observed spreading through phishing campaigns, ultimately dropping the Cobalt Strike post-exploitation framework on compromised machines. Matanbuchus, like other malware loaders such as BazarLoader, Bumblebee, and Colibri, is engineered to download and execute second-stage […]
June 27, 2022
Via: Security AffairsThe Governmental Computer Emergency Response Team of Ukraine (CERT-UA) is warning of a malware campaign targeting Ukrainian telecommunications operators with the DarkCrystal RAT. The malspam messages have the topic “Free primary legal aid” use a password-protected attachment “Algorithm of actions […]
June 23, 2022
Via: Dark ReadingEnterprise defenders contend with a dizzying variety of threats as attackers regularly evolve their arsenals of attack tools. But a recent survey suggests that in many cases, tried-and-tested attacks remain more prevalent than more sophisticated ones. According to Dark Reading’s […]
June 15, 2022
Via: DataBreach TodayA hacking group suspected of ties with the Chinese government and known for targeting telecommunication companies across Southeast Asia, Europe and Africa is using a new remote access Trojan dubbed PingPull, according to researchers at Palo Alto Networks’ Unit 42. […]
June 14, 2022
Via: The Hacker NewsCybersecurity researchers have detailed the workings of a fully-featured malware loader dubbed PureCrypter that’s being purchased by cyber criminals to deliver remote access trojans (RATs) and information stealers. “The loader is a .NET executable obfuscated with SmartAssembly and makes use […]
June 8, 2022
Via: Threat PostA newcomer on the ransomware scene has coopted a 14-year-old malware variant to help it maintain persistence on a targeted network in a recent attack, researchers have found. Black Basta, a ransomware group that emerged in April, leveraged Qbot, (a.k.a. […]
June 6, 2022
Via: CSO OnlineLast year, before the onset of the Russia-Ukraine war, nearly 75% of cryptocurrency payouts for ransomware went to Russia, according to a study conducted by Chainanalysis. Let that sink in a moment. Then consider the legal ramifications of paying those […]
Cyber-crime, Malware, Mobile, Mobile security
May 31, 2022
Via: Threat PostA rapidly evolving IoT malware dubbed “EnemyBot” is targeting content management systems (CMS), web servers and Android devices. Threat actor group “Keksec” is believed behind the distribution of the malware, according to researchers. “Services such as VMware Workspace ONE, Adobe […]
May 20, 2022
Via: Security AffairsAdvanced Intel researcher Yelisey Boguslavskiy announced the that Conti Ransomware gang shuts its infrastructure and some of its administrators announced a rebranding of the popular RaaS operation. The news was reported by BleepingComputer that citing Boguslavskiy confirmed that the Tor […]
Cyber-crime, Malware, Phishing
May 19, 2022
Via: Security AffairsA previously unknown Chinese cyberespionage group, tracked as ‘Space Pirates’, targets enterprises in the Russian aerospace industry with spear-phishing attacks. The group has been active since at least 2017, researchers believe it is linked with other China-linked APT groups, including […]
July 1, 2022
July 1, 2022