Browsing tag
A new ongoing malware campaign has been observed distributing three different stealers, such as CryptBot, LummaC2, and Rhadamanthys hosted on Content Delivery Network (CDN) cache domains since at least February 2024. Cisco Talos has attributed the activity with moderate confidence to a threat actor tracked as CoralRaider, a suspected Vietnamese-origin group that came to light […]
Malicious ads and bogus websites are acting as a conduit to deliver two different stealer malware, including Atomic Stealer, targeting Apple macOS users. The ongoing infostealer attacks targeting macOS users may have adopted different methods to compromise victims’ Macs, but operate with the end goal of stealing sensitive data, Jamf Threat Labs said in a […]
Threat actors have been leveraging fake websites advertising popular video conferencing software such as Google Meet, Skype, and Zoom to deliver a variety of malware targeting both Android and Windows users since December 2023. “The threat actor is distributing Remote Access Trojans (RATs) including SpyNote RAT for Android platforms, and NjRAT and DCRat for Windows […]
The U.S. State Department has announced monetary rewards of up to $15 million for information that could lead to the identification of key leaders within the LockBit ransomware group and the arrest of any individual participating in the operation. “Since January 2020, LockBit actors have executed over 2,000 attacks against victims in the United States, […]
Cybersecurity researchers have identified malicious packages on the open-source Python Package Index (PyPI) repository that deliver an information stealing malware called WhiteSnake Stealer on Windows systems. The malware-laced packages are named nigpal, figflix, telerer, seGMM, fbdebug, sGMM, myGens, NewGends, and TestLibs111. They have been uploaded by a threat actor named “WS.” “These packages incorporate Base64-encoded […]
Threat actors have been observed leveraging a now-patched security flaw in Microsoft Windows to deploy an open-source information stealer called Phemedrone Stealer. “Phemedrone targets web browsers and data from cryptocurrency wallets and messaging apps such as Telegram, Steam, and Discord,” Trend Micro researchers Peter Girnus, Aliakbar Zahravi, and Simon Zuckerbraun said. “It also takes screenshots […]
Information stealing malware are actively taking advantage of an undocumented Google OAuth endpoint named MultiLogin to hijack user sessions and allow continuous access to Google services even after a password reset. According to CloudSEK, the critical exploit facilitates session persistence and cookie generation, enabling threat actors to maintain access to a valid session in an […]
An unspecified government entity in Afghanistan was targeted by a previously undocumented web shell called HrServ in what’s suspected to be an advanced persistent threat (APT) attack. The web shell, a dynamic-link library (DLL) named “hrserv.dll,” exhibits “sophisticated features such as custom encoding methods for client communication and in-memory execution,” Kaspersky security researcher Mert Degirmenci […]
The Russia-linked hacking crew known as Turla has been observed using an updated version of a known second-stage backdoor referred to as Kazuar. The new findings come from Palo Alto Networks Unit 42, which is tracking the adversary under its constellation-themed moniker Pensive Ursa. “As the code of the upgraded revision of Kazuar reveals, the […]
A relatively new threat actor known as YoroTrooper is likely made up of operators originating from Kazakhstan. The assessment, which comes from Cisco Talos, is based on their fluency in Kazakh and Russian, use of Tenge to pay for operating infrastructure, and very limited targeting of Kazakhstani entities, barring the government’s Anti-Corruption Agency. “YoroTrooper attempts […]
Multiple hotel chain employees constantly receive emails that they should probably ignore, as they could fall victim to a massive phishing campaign targeting the hospitality industry. Cybersecurity specialists from security firm Kaspersky have released a report detailing a hacking campaign identified as RevengeHotels that aims to obtain credit card data from millions of hotel chain […]
Drivers license numbers of around 100,000 ‘ Dashers ‘ have also been accessed. DoorDash revealed in a blog post on Thursday that it had information about a third-party unauthorized access to 4.9 million customers. Customers, drivers and dealers joining the DoorDash platform on or before 5 April 2018 were infringed on 4 May 2019. The […]
After a group of IT system audit specialists performed an analysis on medical imaging systems connected to the public Internet, it has been concluded that nearly 600 servers, located in 52 different countries, lack the minimum protection measures against unauthorized access. According to the experts, the analyzed systems do not have update patches to protect […]
A Romanian citizen was sentenced to 65 months in prison for operating a payment card fraud scheme using an attack variant known as “skimming“. According to experts in IT systems audit, the defendant and his accomplices stole more than $850k USD, emptying the bank accounts of more than 500 people. Bogdan Viorel Rusu, 38 years […]
The attack could have exposed employees’ personal information The US State Department has confirmed that a hacker or group of hackers managed to infringe one of their email systems, an event that could potentially expose the personal information of some of their employees, as reported by ethical hacking specialists from the International Institute of Cyber Security. The […]
Information attacks keep coming Timehop, the social media app was affected by a massive data breach last July 4th, which compromised the personal data of its more than 21 million users, as reported by specialists in secure data destruction from the International Institute of Cyber Security. Timehop is a very simple app that gathers photos and previous […]
Short Bytes: Visual Hacking is a security threat that is often overlooked by us. This is the act of stealing information by simple observation and it’s success rates are as high as 90%. Read more to know everything about it. Visual Hacking is a relatively new term that you need to add in your jargon. […]
Short Bytes: Was your data compromised in the latest data breaches? How to know if you’ve been hacked? Here are the answers. The online world is becoming scarier each day and the possibility of getting hacked gets increased each time you sign into your online accounts. It’s possible that you haven’t been hacked yet, but you […]