Computer Security
CACTUS Ransomware Abuses Vulnerabilities
A recent CACTUS ransomware campaign has been detected exploiting newly revealed vulnerabilities in Qlik Sense, a cloud analytics and business intelligence platform. Researchers from Arctic Wolf, including Stefan... Read more
PikaBot Malware Deployed Alongside DarkGate
Phishing campaigns deploying malware families like DarkGate and PikaBot are employing strategies reminiscent of previous attacks involving the now-defunct QakBot trojan. According to a report from Cofense shared with... Read more
Ddostf Botnet Deploying Attackf on MySQL Servers
The 'Ddostf' botnet is focusing its activity on MySQL servers with the aim of taking control and offering their DDoS capabilities as a service to other cybercriminals. Researchers at AhnLab Security Emergency Response... Read more
ObjCShellz Malware Linked to NK Threat Actor BlueNoroff
The nation-state group BlueNoroff, associated with North Korea, is now linked to an undisclosed macOS malware strain called ObjCShellz, as revealed by Jamf Threat Labs. This malware is part of the RustBucket malware... Read more
CanesSpy Malware Included in Modified Apps
A group of cybersecurity experts has discovered several modified versions of WhatsApp for Android that include a spyware component named CanesSpy. These altered versions of the popular messaging app have been found to... Read more
SIGNBT Malware Linked to North Korean Lazarus Group
The Lazarus Group, associated with North Korea, has been linked to a recent campaign where an undisclosed software vendor fell victim to a cyberattack through the exploitation of known security vulnerabilities in... Read more
WailingCrab Malware Distributed Through Email Campaign
Emails with a delivery and shipping theme are being employed to distribute a sophisticated malware loader known as WailingCrab. According to researchers from IBM X-Force, the malware comprises various components,... Read more
NetSupport RAT Deployed Against Multiple Targets
Education, government, and business services sectors are currently under threat from malicious actors employing a remote access trojan named NetSupport RAT. According to a report from VMware Carbon Black researchers... Read more
Hunters International Ransomware Inherits Hive's Operations
A recently emerged ransomware group named Hunters International has obtained the source code and infrastructure from the now-dismantled Hive operation, using it as a foundation for their own activities in the threat... Read more
GootBot Malware Spreads at Alarming Pace
A recently discovered variant of the GootLoader malware, known as GootBot, has been identified as a tool that enables unauthorized movement within compromised systems and manages to avoid detection. Researchers from... Read more
Kandykorn Malware Linked to North Korean Hacker Group
Blockchain engineers from an undisclosed cryptocurrency exchange platform are being targeted by state-sponsored threat actors associated with the Democratic People's Republic of Korea through Discord. They are using a... Read more
StripedFly - a Complex Malware That Evaded Detection for Years
Initially believed to be a simple cryptocurrency mining malware, StripedFly has turned out to be a highly sophisticated espionage platform designed for both Windows and Linux systems, with a staggering number of over... Read more
InfectedSlurs Botnet Exploits Zero-Day RCE Vulnerabilities
Akamai has identified a recently discovered Mirai-based DDoS botnet called InfectedSlurs, actively taking advantage of two zero-day vulnerabilities to infect routers and video recorder (NVR) devices. Although the... Read more
LitterDrifter Linked to Russian Cybercrime Group
Russian cyber espionage actors linked to the Federal Security Service (FSB) have been observed employing a USB-propagating worm named LitterDrifter in attacks directed at Ukrainian entities. Check Point, which... Read more
BiBi-Windows Wiper Malware Used Against Israel
Security researchers have issued a warning regarding a Windows version of a wiper malware that had previously targeted Linux systems in cyber attacks against Israel. Named BiBi-Windows Wiper by BlackBerry, this... Read more
SecuriDropper Mobile Malware Manages to Dodge Detection
Cybersecurity experts have unveiled a new Android dropper service known as SecuriDropper, which circumvents Google's latest security restrictions and delivers malware. Dropper malware for Android is designed to act as... Read more
BiBi-Linux Wiper Malware Used Against Israeli Targets
A newly discovered malware called BiBi-Linux is being employed in attacks aimed at Linux systems owned by Israeli companies, with the intent of erasing data. The Incident Response team at Security Joes uncovered this... Read more
Akira Stealer Evades Detection
Akira, an information-stealing malware discovered in early 2023, has the capability to pilfer sensitive data like saved login details, payment card information, usernames, system identification, hardware specifics,... Read more
