Cybercrime, Bangladesh under attack by Bitter with a new malware
Cisco Talos cybersecurity experts: The Trojan, dubbed ZxxZ, is spread via with a themed lure document sent to high-ranking officers of the Police RAB.
Cybercrime, the MuddyWater conglomerate targets Turkey-Arabian Peninsula
Cisco Talos cybersecurity experts: Iran-linked APT leveraged maldocs and exe-based infection chains to deliver malware. Sub-groups hit different targets with same direction.
Cyber Warfare, pro-Russia hackers target IT Army of Ukraine
The threat actors attempt to exploit Kyiv sympathizers by offering malware purporting to be offensive cyber tools to target Moscow-linked entities.
Cybercrime, Afghanistan and India targeted with commodity RATs
Cisco Talos cybersecurity experts: The attacker, a single actor, deploys a variety of malware, such as DcRAT and QuasarRAT, via diplomatic and humanitarian lures.
Cybercrime, fake Amnesty International website spread Sarwent
Cisco Talos cybersecurity experts: The lure is the free availability of am anti Pegasus spyware tool, called AVPegasus. Indeed, the software is the malware.
Cybersecurity, multiple vulnerabilities in D-LINK DIR-3040 wireless router
Cisco Talos: An attacker could carry out a variety of malicious actions, including exposing sensitive information, causing a DoS and executing arbitrary code.
Cybercrime, the Necro Python malware is evolving
Cisco Talos cybersecurity experts: The bot has new features, ranging from different C2 communications to exploits to spread. It also uses a Tezos miner.
Cybercrime, Loda RAT is back with new versions
Cisco Talos cybersecurity experts: The 1.1.1 malware added a Powershell keylogger and a VB script. The 1.1.7 update removed them, focusing on stealing passwords and cookies from browsers.
Cyber Espionage, Iran still targets Lebanon government
Cyber security experts found an update of the Karkoff implant, used by APT34. It proves that group is still operating and that a new campaign is active. The malware is delivered through spear-phishing emails.
Cybercrime, SWEED is targeting precision engineering companies in Italy
Marco Ramilli, cyber security expert and Yoroi founder: The attacker, pretended to be a customer, sent to victims an email containing Microsoft XLS file, without Macro but with hidden malware.