Browsing tag
Threat actors operating under the name Anonymous Arabic have released a remote access trojan (RAT) called Silver RAT that’s equipped to bypass security software and stealthily launch hidden applications. “The developers operate on multiple hacker forums and social media platforms, showcasing an active and sophisticated presence,” cybersecurity firm Cyfirma said in a report published last […]
Spyware masquerading as modified versions of Telegram have been spotted in the Google Play Store that’s designed to harvest sensitive information from compromised Android devices. According to Kaspersky security researcher Igor Golovin, the apps come with nefarious features to capture and exfiltrate names, user IDs, contacts, phone numbers, and chat messages to an actor-controlled server. […]
A new financially motivated operation is leveraging a malicious Telegram bot to help threat actors scam their victims. Dubbed Telekopye, a portmanteau of Telegram and kopye (meaning “spear” in Russian), the toolkit functions as an automated means to create a phishing web page from a premade template and send the URL to potential victims, codenamed […]
A novel credential-stealing malware called Zaraza bot is being offered for sale on Telegram while also using the popular messaging service as a command-and-control (C2). “Zaraza bot targets a large number of web browsers and is being actively distributed on a Russian Telegram hacker channel popular with threat actors,” cybersecurity company Uptycs said in a […]
An emerging Python-based credential harvester and a hacking tool named Legion is being marketed via Telegram as a way for threat actors to break into various online services for further exploitation. Legion, according to Cado Labs, includes modules to enumerate vulnerable SMTP servers, conduct remote code execution (RCE) attacks, exploit unpatched versions of Apache, and […]
Copycat websites for instant messaging apps like Telegram and WhatApp are being used to distribute trojanized versions and infect Android and Windows users with cryptocurrency clipper malware. “All of them are after victims’ cryptocurrency funds, with several targeting cryptocurrency wallets,” ESET researchers Lukáš Štefanko and Peter Strýček said in a new analysis. While the first […]
The Russian state-sponsored cyber espionage group known as Gamaredon has continued its digital onslaught against Ukraine, with recent attacks leveraging the popular messaging app Telegram to strike military and law enforcement sectors in the country. “The Gamaredon group’s network infrastructure relies on multi-stage Telegram accounts for victim profiling and confirmation of geographic location, and then […]
Facebook business and advertising accounts are at the receiving end of an ongoing campaign dubbed Ducktail designed to seize control as part of a financially driven cybercriminal operation. “The threat actor targets individuals and employees that may have access to a Facebook Business account with an information-stealer malware,” Finnish cybersecurity company WithSecure (formerly F-Secure Business) […]
Cybersecurity researchers have shed light on an actively maintained remote access trojan called DCRat (aka DarkCrystal RAT) that’s offered on sale for “dirt cheap” prices, making it accessible to professional cybercriminal groups and novice actors alike. “Unlike the well-funded, massive Russian threat groups crafting custom malware […], this remote access Trojan (RAT) appears to be […]
An Iranian geopolitical nexus threat actor has been uncovered deploying two new targeted malware that come with “simple” backdoor functionalities as part of an intrusion against an unnamed Middle East government entity in November 2021. Cybersecurity company Mandiant attributed the attack to an uncategorized cluster it’s tracking under the moniker UNC3313, which it assesses with […]
One major WhatsApp feature that will be limited includes receiving calls and messages as the messaging service will be disabled. If you are keeping an eye on WhatsApp’s new privacy policies you may already know that the company has backtracked on its previous decision to deactivate or delete user accounts that didn’t accept sharing their […]
The IT security researchers at Positive Security Fabian Bräunlein and Lukas Euler have identified multiple one-click vulnerabilities across various popular software applications that can let an attacker execute arbitrary code on targeted devices. The researchers noted in their research that desktop apps, particularly those that pass user-supplied URLs to be opened by the OS, are […]
Adversaries are increasingly abusing Telegram as a “command-and-control” system to distribute malware into organizations that could then be used to capture sensitive information from targeted systems. “Even when Telegram is not installed or being used, the system allows hackers to send malicious commands and operations remotely via the instant messaging app,” said researchers from cybersecurity […]
Athena Solomon K, a student of the National Law School of India University, Bengaluru has moved to court to seek a ban on popular messaging app Telegram. She says that Telegram has become a mouthpiece for spreading vulgar and sexual content that contains women and children. Athena said that Telegram allows anonymous posting of messages […]
Researchers discovered a new trojan Masad Stealer to deliver the powerful spyware on the targeted systems and exfiltrate the stolen data via Telegram. Masad Stealer using Telegram as a command and control channel to maintain the anonymity and hide the malware communication traffic. Recent pas, several hacking groups are abusing the Telegram and used it […]
There is currently a wide range of instant messaging services and, according to information security specialists, many have a security measure known as end-to-end encryption, which prevents third parties from being able to access the content of messages between two users. However, this does not mean that our information is completely secure, as hackers can […]
A new project to reform Chinese extradition laws has caused millions of citizens in Hong Kong to take over the streets to demonstrate against Beijing’s plans. Despite mass protests, Chinese authorities are trying to identify movement leaders using various facial identification techniques, number phone tracking, among other methods. However, information security experts mention that demonstrators […]
Many activists, researchers, and even some malicious users see Telegram as an option to establish much more secure communication channels than other options available in the instant messaging market like WhatsApp or Facebook Messenger. According to information security specialists, even some social movements, such as the struggle for democracy in Hong Kong, have received a […]
If you think that the multimedia files that you receive in your complex, encrypted, secure messaging applications cannot be tampered with, you should think again. Yesterday, Symantec security researchers demonstrated some interesting scenarios of attacks on WhatsApp and Telegram applications for Android, which could allow attackers to spread false news or deceive users when sending […]
Ethical hacking specialists from cybersecurity firm Symantec reported the discovery of a vulnerability that, if exploited, would allow a hacker to access files (such as photos, videos or PDF documents) shared via WhatsApp and Telegram. The vulnerability, dubbed by experts as ‘Media File Jacking’, exists due to the time span between writing a file on […]
The instant messaging service Telegram suffered a denial of service (DoS) attack this Wednesday; through Twitter, the company unveiled the incident, mentioning that users might experience some connection problems when using the service. According to web application security experts, the company’s CEO has pointed to the Chinese government as responsible for the incident. Pavel Durov, […]