Cybercrime spreads Astaroth Trojan with a fileless malware campaign
Microsoft Defender ATP cyber security experts: Telemetry showed a sudden increase in the use of WMIC tool to run a script. This led researchers discovery the cyber attack.
Croatia hit by waves of cyber attacks with a new malware: SilentTrigger
Positive Technologies cyber security experts: Government agencies targeted with a spear-phishing campaign. The messages had macro weaponized.
TA505 cybercrime gang launched new campaigns with Gelup-FlowerPippi malware
Trend Micro cyber security experts: The first malicious code abuses user account control (UAC) bypass and works as a loader for other threats. The second is a dangerous backdoor.
Cyber espionage, what APT34 and MuddyWater have in common?
Cyber security expert and Yoroi founder, Marco Ramilli, analyzed the two state-sponsored groups to look for strong and weak similarities.
NASA has been hacked thanks to a Raspberry Pi device
The Agency suffered a hug data breach with approximately 500 MB of data related to Mars missions stolen. The cyber security experts: It’s the work of an APT.
Cyber Espionage: Waterbug targets governments with a new toolset
Symantec cyber security experts: The group, aka Turla, launched 3 campaigns: one with Neptun malware, another with Meterpreter and the last one with custom RPC backdoor.
Cyber Espionage, Bouncing Golf is targeting Middle Eastern countries
Trend Micro cyber security expert: So far observed more than 660 Android devices infected with GolfSpy malware. Much of the information being stolen appear to be military-related.
Cyber espionage, MuddyWater has updated it’s POWERSTATS backdoor
Trend Micro cyber security experts: The Iranian state-sponsored APT is using new tools and payloads, which indicates that it’s continuously developing the schemes.
Is APT34 responsible for the Jason cyber espionage tool?
The cyber security expert, Marco Ramilli, analyzed it to match the clues e find if Iranian state-sponsored hackers are behind the operation. Something says Yes, something diverge.
Ukraine again under a cyber attack, probably by Gamaredon
Cybaze-Yoroi ZLAB cyber security experts: The campaign shows the Matryoshka structure to chain SFX archives, typical of APT implant, and the use of a legit third party RAT as payload.