Lazarus Hackers Altering Legitimate Software Packages To Launch Large-Scale Cyber Attack
The notorious Lazarus Group, a North Korean state-sponsored Advanced Persistent Threat (APT), has been implicated in a large-scale cyberattack campaign dubbed "Operation Phantom Circuit."
This operation involves embedding malicious backdoors into legitimate software packages, targeting...
New SMS-Based Phishing Tool ‘DevilTraff’ Enables Mass Cyber Attacks
A new SMS phishing tool, DevilTraff, is emerging as a major threat in the cybersecurity landscape, enabling cybercriminals to launch large-scale smishing campaigns with unprecedented ease and efficiency.
This platform's advanced features, including sender ID...
Hackers Exploit RDP Protocol To Gain Windows Access To Control Browser Remotely
Cybercriminals have been exploiting vulnerabilities in the Remote Desktop Protocol (RDP) to gain unauthorized access to Windows systems and remotely control web browsers.
This method not only compromises individual machines but also poses a significant...
State-sponsored Actors Abusing Gemini to Fuel Cyber Attacks
The state-sponsored threat actors are increasingly exploiting Google's AI-powered assistant, Gemini, to enhance their cyber operations.
While generative AI tools like Gemini hold immense potential for innovation and productivity, their misuse by advanced persistent threat...
Google Researchers Breakdowns The Malware Obfuscator Scatterbrain
Google's Threat Intelligence Group (GTIG), in collaboration with Mandiant, has unveiled a comprehensive analysis of ScatterBrain, an advanced obfuscation tool used by China-linked cyber espionage group APT41.
This obfuscator is central to the deployment of...
FleshStealer, A New Infostealer Attacking Chrome & Mozilla Users
A new strain of information-stealing malware, dubbed FleshStealer, has emerged as a significant threat to internet users worldwide.
This advanced infostealer targets Chromium and Mozilla-based web browsers, exploiting their vulnerabilities to steal sensitive data, including...
New Aquabot Malware Attacking Mitel SIP To Inject Commands
A new variant of the Mirai-based malware, dubbed Aquabotv3, has been identified by the Akamai Security Intelligence and Response Team (SIRT).
This malware is actively exploiting a command injection vulnerability in Mitel SIP phones to...
Lynx Ransomware Infrastructure To Attack Windows, Linux, ESXi & Affiliate Panel Uncovered
Security experts has uncovered the sophisticated infrastructure of the Lynx Ransomware-as-a-Service (RaaS) group in a recent investigation.
This ransomware group is Known for its cross-platform capabilities and affiliate-driven model.
Lynx targets Windows, Linux, and VMware ESXi...
New TorNet Backdoor Abusing Windows Schedule Task to Deliver Malware
A financially motivated threat actor has been linked to a sophisticated cyber campaign that has been targeting users in Poland and Germany since July 2024.
The effort uses phishing emails to spread a range of...
EU Sanctioned Three Russian Hackers for Attacking Govt Agencies
The European Union today imposed sanctions on three Russian military intelligence officers for their involvement in a series of cyberattacks targeting Estonian government agencies in 2020.
The individuals, identified as Nikolay Alexandrovich Korchagin, Vitaly Shevchenko,...