Sudan, Anonymous declares war on the military junta
Ultimatum from the hactivists to TMC: Restore immediately Internet to the population, otherwise we will destroy the country cyber infrastructure.
Ukraine again under a cyber attack, probably by Gamaredon
Cybaze-Yoroi ZLAB cyber security experts: The campaign shows the Matryoshka structure to chain SFX archives, typical of APT implant, and the use of a legit third party RAT as payload.
Cyber Security, GandCrab will be closed at the end of the month
Bleeping Computer: The ransomware authors, that hit also Italy, announced the end of the operations thanks to huge profits. The malware distribution will be stopped within 20 days.
Emissary Panda targets Middle East governments with webshells on Sharepoint servers
Palo Alto cyber security experts: The APT exploited a recently patched remote code execution vulnerability to upload a variety of tools. From Mimikatz to HyperBro.
WordPress, new flaw in plugin: this time is Convert Plus
The cyber security experts of WordFence and the developers, however, fixed it before publishing the news. Users have to upgrade to 3.4.3 version ASAP to avoid cybercrime attacks.
Cybercrime, TA505 group is expanding its operations with legit RAT
Yoroi-Cybaze cyber security experts noticed a suspicious attack on an organization with spear phishing email and a RMS used as a RAT. The target is not linked to Banking-Retail sectors.
APT10 is back with two new malware loaders and payloads versions
EnSilo cyber security experts: We detected a new activity in Southeast Asia, that exploited previously unknown loader’ variants and malware that is unique to the threat actor.
Cyber Security, Japan to limit foreign ownership of firms in its IT and TLC sectors
Tokyo wants to prevent technology theft or damages to defense output and technological foundation. Especially by state-sponsored actors.
Cybercrime is targeting Italy with a new version of JasperLoader
Cisco Talos cyber security experts: It features several changes and improvements to control where the malware can spread and avoid analysis by sandboxes and antivirus.
Cybercrime, three well known techniques still successfully used to avoid detection
Yoroi-Cybaze cyber security experts: They are “The Broken Doc”, “Hide Payload with Office Developer Mode”, and “Spoofed Signature”or “Certificate Spoofing”.