Computer Security
SpectralBlur Backdoor Comes With a Varied Malicious Toolkit
Researchers in cybersecurity have uncovered a novel backdoor for Apple's macOS, identified as SpectralBlur, which coincides with a known malware category associated with North Korean threat actors. According to... Read more
Beware: JinxLoader Malware Named After Video Game Character
A recently identified malware loader named JinxLoader, built on the Go programming language, is now being employed by threat actors to deliver subsequent malicious payloads such as Formbook and its successor XLoader.... Read more
FjordPhantom Mobile Malware Hides Behind Virtualization
Security researchers have revealed the existence of a recently identified and highly sophisticated Android malware known as FjordPhantom, which has been actively targeting individuals in Southeast Asian nations such... Read more
WailingCrab Malware Distributed Through Email Campaign
Emails with a delivery and shipping theme are being employed to distribute a sophisticated malware loader known as WailingCrab. According to researchers from IBM X-Force, the malware comprises various components,... Read more
NetSupport RAT Deployed Against Multiple Targets
Education, government, and business services sectors are currently under threat from malicious actors employing a remote access trojan named NetSupport RAT. According to a report from VMware Carbon Black researchers... Read more
Hunters International Ransomware Inherits Hive's Operations
A recently emerged ransomware group named Hunters International has obtained the source code and infrastructure from the now-dismantled Hive operation, using it as a foundation for their own activities in the threat... Read more
The Top Cyber Threats of 2023: Navigating the Evolving Cybersecurity Landscape
As we delve deeper into the digital age, the complexity and frequency of cyber threats continue to escalate. 2023 was particularly significant in terms of the evolution of these threats. What attack strategies were... Read more
Rugmi Malware Spread Through Fake Cracks and Discord
A novel malware loader is currently in use by threat actors for disseminating various information-stealing entities such as Lumma Stealer (also known as LummaC2), Vidar, RecordBreaker (alternatively known as Raccoon... Read more
Agent Racoon Backdoor Deployed by Unknown Threat Actor
Unidentified threat actors have targeted organizations in the Middle East, Africa, and the United States, aiming to disseminate a recently discovered backdoor known as Agent Racoon. According to Chema Garcia, a... Read more
InfectedSlurs Botnet Exploits Zero-Day RCE Vulnerabilities
Akamai has identified a recently discovered Mirai-based DDoS botnet called InfectedSlurs, actively taking advantage of two zero-day vulnerabilities to infect routers and video recorder (NVR) devices. Although the... Read more
LitterDrifter Linked to Russian Cybercrime Group
Russian cyber espionage actors linked to the Federal Security Service (FSB) have been observed employing a USB-propagating worm named LitterDrifter in attacks directed at Ukrainian entities. Check Point, which... Read more
BiBi-Windows Wiper Malware Used Against Israel
Security researchers have issued a warning regarding a Windows version of a wiper malware that had previously targeted Linux systems in cyber attacks against Israel. Named BiBi-Windows Wiper by BlackBerry, this... Read more
Epsilon Stealer Spread Though Malicious Game Mod
Epsilon is a malicious software designed with the intent to pilfer sensitive data. This malicious program specifically targets information stored in browsers, gaming applications, and various other software, including... Read more
SpyLoan Mobile Malware Hides in Finance Android Apps
Android smartphones face a potential threat from harmful loan applications that have been downloaded millions of times from the Google Play store, as outlined by security researchers. Approximately 18 apps, recognized... Read more
CACTUS Ransomware Abuses Vulnerabilities
A recent CACTUS ransomware campaign has been detected exploiting newly revealed vulnerabilities in Qlik Sense, a cloud analytics and business intelligence platform. Researchers from Arctic Wolf, including Stefan... Read more
PikaBot Malware Deployed Alongside DarkGate
Phishing campaigns deploying malware families like DarkGate and PikaBot are employing strategies reminiscent of previous attacks involving the now-defunct QakBot trojan. According to a report from Cofense shared with... Read more
Ddostf Botnet Deploying Attackf on MySQL Servers
The 'Ddostf' botnet is focusing its activity on MySQL servers with the aim of taking control and offering their DDoS capabilities as a service to other cybercriminals. Researchers at AhnLab Security Emergency Response... Read more
ObjCShellz Malware Linked to NK Threat Actor BlueNoroff
The nation-state group BlueNoroff, associated with North Korea, is now linked to an undisclosed macOS malware strain called ObjCShellz, as revealed by Jamf Threat Labs. This malware is part of the RustBucket malware... Read more