Several days ago, researchers at Aqua Security published a report on the updated version of the malicious program HeadCrab, which has been targeting Redis database servers globally since September 2021. The emergence of this...
In a recent report by Trend Micro, the cybercriminal group known as Pawn Storm, engaged in hacking operations targeting key global organizations since 2004, is detailed. Despite the seemingly outdated nature of their methods,...
In Italy, cybercriminal activity known as UNC4990, which employs infected USB devices to launch attacks across various sectors including healthcare, transportation, construction, and logistics, was reported by Mandiant on January 30. Active since late...
In a collaborative effort between ESET and the Brazilian Federal Police, significant strides were made to dismantle the activities of the Grandoreiro botnet, which led to victims incurring losses of $3.9 million. According to...
CyberArk has released an online version of its White Phoenix tool, a free decryptor for files compromised by ransomware using intermittent encryption. Initially presented in May last year as a Python project on GitHub,...
Cybersecurity experts recently detected a resurgence of the ZLoader malware campaign, nearly two years after the botnet’s infrastructure was dismantled in April 2022. Zscaler reports the development of a new variant of ZLoader since...
Cybersecurity researchers have identified a new variant of the Phobos ransomware family named Faust, as reported by FortiGuard Labs of Fortinet. Faust, part of the Phobos lineage including Eking, Eight, Elbie, Devos, and 8Base,...
A Canadian court has sentenced 33-year-old Matthew Philbert to two years in prison after he pleaded guilty to disseminating ransomware and launching malicious attacks on individuals, businesses, and government institutions. Philbert, arrested in Canada...
Researchers from Trustwave have reported a steady increase in the use of a Phishing-as-a-Service (PhaaS) platform called Greatness, which targets the collection of Microsoft 365 user credentials. Greatness is marketed to other cybercriminals as...
Security experts from Malwarebytes have recently uncovered a malicious campaign targeting Chinese-speaking users, who fell victim to cybercriminals through the Google Ads advertising service. Cybercriminals exploited Google advertiser accounts to create fraudulent ads that...
Researchers at Arctic Wolf have discovered a new malicious downloader, crafted in the Go language and dubbed CherryLoader. This threat, previously observed in the wild, aims to facilitate the delivery of additional malware onto...
The Slovak cybersecurity firm ESET has uncovered the operations of a previously unknown hacker group linked to China, christening it with the codename Blackwood. Active since 2018, this group has specialized in adversary-in-the-middle (AitM),...
A recent study by Dutch researcher Tom Meurs from the University of Twente has uncovered factors influencing the likelihood of ransomware victims paying ransoms to cybercriminals. The analysis utilized data from the Dutch police...
ReversingLabs has identified two malicious modules in the widely-used NPM package registry, which utilize GitHub to store SSH keys encrypted in Base64 that had previously been pilfered from developers’ systems. The modules, named warbeast2000...
In December 2023, media organizations and prominent North Korean affairs experts became the targets of a new malicious campaign orchestrated by the hacker group ScarCruft. Researchers at SentinelOne reported that the group is experimenting...
Cybersecurity researchers from Jamf Threat Labs have analyzed over 10,000 scripts utilized by the Parrot Traffic Direction System (TDS) and unearthed significant advancements in the optimization of these scripts. These enhancements render the malicious...
