EHA
APT Groups Using HrServ Web Shell to Hack Windows Systems

APT Groups Using HrServ Web Shell to Hack Windows Systems

A HrServ web shell is a malicious script or program that enables remote server administration, allowing unauthorized access and control.  Hackers target web shells to gain unauthorized access to a server or website, allowing them...
New ExelaStealer Attack Windows PCs and Steals Private Data

New ExelaStealer Attack Windows PCs and Steals Private Data

A new InfoStealer called ExelaStealer emerged in 2023, joining the ranks of other well-known malware like RedLine, Raccoon, and Vidar.  FortiGuard Labs, a leading cybersecurity research and analysis firm, has revealed some insights into this...
CISA Announces New Logging Made Easy Tool for Windows-based devices

CISA Announces New Logging Tool for Windows-based Devices

The Cybersecurity and Infrastructure Security Agency (CISA) has launched a new version of Logging Made Easy (LME), a free and simple log management solution for Windows-based devices.  LME is based on a technology developed by...
Hackers Infect Windows Users with Weaponized MSIX App Packages

Hackers Infect Windows Users with Weaponized MSIX App Packages

MSIX helps developers package Windows apps for easy installation. While it's user-friendly, it demands access to code signing certificates, making it an attractive target for resourceful threat actors. Additionally, MSIX packages can be distributed and...
Knight Ransomware Windows Computer

Knight Ransomware Attacking Windows Computer to Exfiltrate Sensitive Data

Knight ransomware, a relatively new ransomware gang that first appeared in August 2023, targets Windows computers to steal sensitive data. Several industrial sectors have been attacked by the Knight ransomware organization, which includes retail and healthcare organizations,...
IIS-based Backdoors

Iranian APT Group Utilize IIS-based Backdoors to Compromise Windows servers

A new threat actor who is found to be associated with Iran's Ministry of Intelligence and Security (MOIS) IIS has been discovered to be conducting cyberespionage campaigns. Their targets are government, military, financial, and...
New Millenium RAT Sold on GitHub Attacking Windows Systems

New Millenium RAT Sold on GitHub Attacking Windows Systems

Millenium-RAT, a sophisticated Remote Access Tool (RAT) for Windows systems, is now available for purchase on GitHub, which exclusively attacking windows systems. The Millenium-RAT, particularly version 2.4; is a Win32 executable built on the.NET framework....
Hackers Trick Windows Users With Malicious Ads to Deliver Malware

Hackers Trick Windows Users With Malicious Ads to Deliver Malware

Malvertising campaigns often trick victims with near-perfect replicas of software vendor sites. To easily trick their victims and achieve their malicious purposes, threat actors target popular software vendors like- Webex AnyDesk KeePass Cybersecurity researchers at Malwarebytes recently identified a...
Hackers Abuse Microsoft Access

Hackers Exploit Microsoft Access Feature to Steal Windows User’s NTLM Tokens

Microsoft Access is a relational database management system developed by Microsoft that allows users to store and manage data.  Hackers target it because vulnerabilities in Access can be exploited to gain unauthorized access to databases,...
FBI Dismantled IPStorm and Botnet Infrastructure 

FBI Dismantled Notorious IPStorm Botnet Infrastructure 

The FBI has achieved a remarkable feat in the fight against cybercrime, dismantling the infamous IPStorm botnet network that infected tens of thousands of devices across various platforms worldwide.  The brains behind this criminal operation,...

Managed WAF

Website

Latest News