Ukraine again under a cyber attack, probably by Gamaredon
Cybaze-Yoroi ZLAB cyber security experts: The campaign shows the Matryoshka structure to chain SFX archives, typical of APT implant, and the use of a legit third party RAT as payload.
Cybercrime, TA505 group is expanding its operations with legit RAT
Yoroi-Cybaze cyber security experts noticed a suspicious attack on an organization with spear phishing email and a RMS used as a RAT. The target is not linked to Banking-Retail sectors.
APT10 is back with two new malware loaders and payloads versions
EnSilo cyber security experts: We detected a new activity in Southeast Asia, that exploited previously unknown loader’ variants and malware that is unique to the threat actor.
Banking trojans are back, Trickbot re-appears in the malware top ten
Check Point cyber security experts: The cybercrime malicious code has new capabilities, features and distribution vectors. The first three positions are occupied by cryptominers.
Cybercrime, Nigeria’s SilverTerrier gang is growing and evolving
Palo Alto cyber security experts: The group has now over 400 individual actors a targets all industry with BEC schemes, leveraging malware. In particular Information Stealers and RATs.