Security News

Pakistan-linked Malware Campaign Evolves to Target Windows, Android, and macOS

2024-06-13 10:26

Threat actors with ties to Pakistan have been linked to a long-running malware campaign dubbed Operation Celestial Force since at least 2018. The activity, still ongoing, entails the use of an...

#android #macos #malware #windows

Cybercriminals Employ PhantomLoader to Distribute SSLoad Malware

2024-06-13 10:19

The nascent malware known as SSLoad is being delivered by means of a previously undocumented loader called PhantomLoader, according to findings from cybersecurity firm Intezer. "The loader is...

#cybercriminal #malware

New Cross-Platform Malware 'Noodle RAT' Targets Windows and Linux Systems

2024-06-13 06:25

A previously undocumented cross-platform malware codenamed Noodle RAT has been put to use by Chinese-speaking threat actors either for espionage or cybercrime for years. While this backdoor was...

#linux #malware #RAT #systems #windows

China-Linked ValleyRAT Malware Resurfaces with Advanced Data Theft Tactics

2024-06-11 08:47

Cybersecurity researchers have uncovered an updated version of malware called ValleyRAT that's being distributed as part of a new campaign. "In the latest version, ValleyRAT introduced new...

#china #malware

More_eggs Malware Disguised as Resumes Targets Recruiters in Phishing Attack

2024-06-10 15:24

Cybersecurity researchers have spotted a phishing attack distributing the More_eggs malware by masquerading it as a resume, a technique originally detected more than two years ago. The attack,...

#attack #malware #phishing

SPECTR Malware Targets Ukraine Defense Forces in SickSync Campaign

2024-06-07 07:13

The Computer Emergency Response Team of Ukraine (CERT-UA) has warned of cyber attacks targeting defense forces in the country with a malware called SPECTR as part of an espionage campaign dubbed...

#defense #malware #ukraine

Hackers Exploit Legitimate Packer Software to Spread Malware Undetected

2024-06-06 09:54

Threat actors are increasingly abusing legitimate and commercially available packer software such as BoxedApp to evade detection and distribute malware such as remote access trojans and...

#exploit #hacker #malware

Chinese attackers leverage previously unseen malware for espionage

2024-06-06 02:45

Sophos released its report, "Operation Crimson Palace: Threat Hunting Unveils Multiple Clusters of Chinese State-Sponsored Activity Targeting Southeast Asia," which details a highly sophisticated, nearly two-year long espionage campaign against a high-level government target. During Sophos X-Ops' investigation, which began in 2023, the managed detection and response team found three distinct clusters of activity targeting the same organization, two of which included tactics, techniques and procedures that overlap with well-known, Chinese nation-state groups: BackdoorDiplomacy, APT15 and the APT41 subgroup Earth Longzhi.

#chinese #espionage #malware

Cisco Talos: LilacSquid Threat Actor Targets Multiple Sectors Worldwide With PurpleInk Malware

2024-06-05 19:13

A new report from Cisco Talos exposed the activities of a threat actor known as LilacSquid, or UAT-4820. The threat actor exploits vulnerable web applications or uses compromised Remote Desktop Protection credentials to successfully compromise systems by infecting them with custom PurpleInk malware.

#cisco #malware #threat

Hackers Use MS Excel Macro to Launch Multi-Stage Malware Attack in Ukraine

2024-06-04 11:07

A new sophisticated cyber attack has been observed targeting endpoints geolocated to Ukraine with an aim to deploy Cobalt Strike and seize control of the compromised hosts. The attack chain, per...

#attack #excel #hacker #macro #malware #multi #ukraine

Security News {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Security News"}]}

Security News