Information Security News

Tag: Remcos RAT

  • Shadows in the RAM: The SHADOW#REACTOR Campaign Unleashes Remcos RAT

    Shadows in the RAM: The SHADOW#REACTOR Campaign Unleashes Remcos RAT

    by

    ddos
    in

    Adversaries have orchestrated a sophisticated campaign utilizing a multi-stage infection vector to deploy the Remcos RAT, a remote administration tool designed to clandestinely subjugate compromised systems. Securonix researchers, who identified this offensive, have designated it SHADOW#REACTOR. It is distinguished by a fusion of subtle delivery mechanisms and a tenacious evasion architecture. The infection sequence is…

  • Weaponizing Grief: Hive0156 Exploits Military Families in High-Stakes Phishing

    Weaponizing Grief: Hive0156 Exploits Military Families in High-Stakes Phishing

    by

    ddos
    in

    Military and governmental institutions have once again found themselves in the crosshairs of a sophisticated spear-phishing campaign, where adversaries exploit the most poignant societal anxieties as a catalyst for deception. Cybersecurity experts have identified these emotionally charged lures as the primary mechanism for a newly discovered offensive. The operation is attributed to the threat actor…

  • MSQL Server Breaches Linked to Mallox Ransomware

    MSQL Server Breaches Linked to Mallox Ransomware

    by

    ddos
    in ,

    Cybersecurity experts from the ASEC laboratory have uncovered a series of sophisticated cyberattacks targeting Microsoft SQL Servers (MS-SQL). The group known as TargetCompany is deploying the Mallox ransomware to encrypt systems and extort victims. The tactics of TargetCompany recall previous incidents involving the Tor2Mine miner and BlueSky virus, highlighting the persistent threat to digital security.…

  • Threat Actor Evades Detection with IDAT Loader, Deploys Remcos

    Threat Actor Evades Detection with IDAT Loader, Deploys Remcos

    by

    ddos
    in ,

    According to a report by Morphisec, Ukrainian organizations based in Finland have been targeted by a malicious campaign distributing the Remcos Remote Access Trojan (RAT). The attack has been attributed to the group UAC-0184. The Remcos RAT is delivered via the IDAT Loader. This phishing campaign employs military-themed lures as a starting point for initiating…

  • The Stealthy Strategy of UAC-0050: Remcos RAT in the World of Cyber Surveillance

    The Stealthy Strategy of UAC-0050: Remcos RAT in the World of Cyber Surveillance

    by

    ddos
    in ,

    The hacker collective known as UAC-0050 has been actively employing phishing attacks to disseminate the malicious software Remcos RAT. This software is designed for remote surveillance and control and plays a pivotal role in the group’s espionage arsenal, as noted by security researchers from Uptycs. Since 2020, UAC-0050 has been aggressively targeting Ukrainian and Polish…