Tag: reverse shell
-
Tomiris APT Infiltrates Governments Via Phishing, Uses Telegram/Discord for C2 Espionage
The Tomiris group launched a new wave of cyber-espionage in early 2025, targeting high-level political and diplomatic institutions. According to Kaspersky Lab, the attacks focused on ministries of foreign affairs, state agencies, and intergovernmental organizations in Russia and across the CIS, with more than a thousand users potentially exposed to the group’s activity. Initial access…
-
Virtual Walls: Curly COMrades Hides Attacks in Hyper-V VMs to Evade Detection
Threat actors affiliated with the group Curly COMrades have devised a method to conceal malicious activity from detection systems by leveraging Windows virtualization. Bitdefender’s investigation found that the attackers manually enable the Hyper-V role on compromised machines and spin up a lightweight Alpine Linux virtual machine to execute malicious code within an isolated enclave. The…
-
MalTerminal: The First Malware to Use GPT-4 for On-the-Fly Code Generation
SentinelLABS researchers have uncovered what they describe as the earliest known sample of malware embedding LLM capabilities — a specimen dubbed MalTerminal. Presented at LABScon 2025, their report catalogs a collection of artifacts: a Windows binary, several Python scripts, and auxiliary tools that together demonstrate how a GPT-4 model was harnessed at runtime to dynamically…