Top

Category: Malware


Cyber-crime, Malware

Researchers Warn of ‘Matanbuchus’ Malware Campaign Dropping Cobalt Strike Beacons

June 27, 2022

Via: The Hacker News

A malware-as-a-service (Maas) dubbed Matanbuchus has been observed spreading through phishing campaigns, ultimately dropping the Cobalt Strike post-exploitation framework on compromised machines. Matanbuchus, like other malware loaders such as BazarLoader, Bumblebee, and Colibri, is engineered to download and execute second-stage […]


Cyber-crime, Malware

Ukrainian telecommunications operators hit by DarkCrystal RAT malware

June 27, 2022

Via: Security Affairs

The Governmental Computer Emergency Response Team of Ukraine (CERT-UA) is warning of a malware campaign targeting Ukrainian telecommunications operators with the DarkCrystal RAT. The malspam messages have the topic “Free primary legal aid” use a password-protected attachment “Algorithm of actions […]


Cyber-crime, Malware

Organizations Battling Phishing Malware, Viruses the Most

June 23, 2022

Via: Dark Reading

Enterprise defenders contend with a dizzying variety of threats as attackers regularly evolve their arsenals of attack tools. But a recent survey suggests that in many cases, tried-and-tested attacks remain more prevalent than more sophisticated ones. According to Dark Reading’s […]


Cyber-crime, Malware

Chinese APT Actor Gallium Adds PingPull RAT to Its Arsenal

June 15, 2022

Via: DataBreach Today

A hacking group suspected of ties with the Chinese government and known for targeting telecommunication companies across Southeast Asia, Europe and Africa is using a new remote access Trojan dubbed PingPull, according to researchers at Palo Alto Networks’ Unit 42. […]


Cyber-crime, Malware

Researchers Detail PureCrypter Loader Cyber Criminals Using to Distribute Malware

June 14, 2022

Via: The Hacker News

Cybersecurity researchers have detailed the workings of a fully-featured malware loader dubbed PureCrypter that’s being purchased by cyber criminals to deliver remote access trojans (RATs) and information stealers. “The loader is a .NET executable obfuscated with SmartAssembly and makes use […]


Cyber-crime, Malware

Black Basta Ransomware Teams Up with Malware Stalwart Qbot

June 8, 2022

Via: Threat Post

A newcomer on the ransomware scene has coopted a 14-year-old malware variant to help it maintain persistence on a targeted network in a recent attack, researchers have found. Black Basta, a ransomware group that emerged in April, leveraged Qbot, (a.k.a. […]


Cyber-crime, Malware

How the Russia-Ukraine war makes ransomware payments harder

June 6, 2022

Via: CSO Online

Last year, before the onset of the Russia-Ukraine war, nearly 75% of cryptocurrency payouts for ransomware went to Russia, according to a study conducted by Chainanalysis. Let that sink in a moment. Then consider the legal ramifications of paying those […]


Cyber-crime, Malware, Mobile, Mobile security

EnemyBot Malware Targets Web Servers, CMS Tools and Android OS

May 31, 2022

Via: Threat Post

A rapidly evolving IoT malware dubbed “EnemyBot” is targeting content management systems (CMS), web servers and Android devices. Threat actor group “Keksec” is believed behind the distribution of the malware, according to researchers. “Services such as VMware Workspace ONE, Adobe […]


Cyber-crime, Malware

Conti ransomware is shutting down operations, what will happen now?

May 20, 2022

Via: Security Affairs

Advanced Intel researcher Yelisey Boguslavskiy announced the that Conti Ransomware gang shuts its infrastructure and some of its administrators announced a rebranding of the popular RaaS operation. The news was reported by BleepingComputer that citing Boguslavskiy confirmed that the Tor […]


Cyber-crime, Malware, Phishing

China-linked Space Pirates APT targets the Russian aerospace industry

May 19, 2022

Via: Security Affairs

A previously unknown Chinese cyberespionage group, tracked as ‘Space Pirates’, targets enterprises in the Russian aerospace industry with spear-phishing attacks. The group has been active since at least 2017, researchers believe it is linked with other China-linked APT groups, including […]