Cisco Validates Salt Typhoon Utilized CVE-2018-0171 to Aim U.S. Telecom Networks
Cisco has verified that a Chinese threat actor named Salt Typhoon managed to enter by potentially exploiting a recognized security...
actor
MAVInject.exe Usage by Chinese Cybercriminals to Bypass Detection in Specific Digital Assaults
Mustang Panda, a hacking group supported by the Chinese government, has been caught using an innovative method to outsmart detection...
APT41 Aims at Japanese Companies in RevivalStone Cyber Espionage Operation
Winnti, the threat group associated with China, has been linked to a fresh operation called RevivalStone that focused on Japanese...
Targeted Developer Attacks: Lazarus Group Utilizes Marstech1 JavaScript Implant
Marstech1, an undisclosed JavaScript implant, has been deployed by the notorious Lazarus Group in malicious activities aimed at developers. SecurityScorecard...
PowerShell and Dropbox Utilized by North Korean APT43 in Focused Cyberattacks on South Korea
An affiliated threat entity connected to North Korea has been identified in an active operation aimed at South Korean enterprises,...
A New Cyberattack Sees North Korean Cybercriminals Utilize PowerShell Technique to Seize Control of Devices
There has been a discovery of a novel method employed by the group associated with North Korea - Kimsuky, in...
Utilizing PowerShell, Golang, and C++ Loaders by Silent Lynx in Sophisticated Cyber Offensives
An unidentified malicious actor dubbed Silent Lynx has surfaced recently in connection with cyber intrusions directed at multiple organizations in...
React Admin Panel Enables Lazarus Group to Manage Worldwide Cyber Offensives
Recent sightings reveal that the Lazarus Group, a prominent threat entity from North Korea, is utilizing a "browser-based control center"...
Recent Cybersecurity Incident: PureCrypter Utilizes Agent Tesla and Fresh TorNet Backdoor in Continuing Cyber Campaigns
An individual driven by financial incentives has been connected to a persistent phishing email initiative that has been active since...
Imitation by GamaCopy Resembles Gamaredon’s Strategies in Cyber Espionage Aimed at Russian Organizations
An unidentified threat actor has been identified replicating the techniques linked to the Kremlin-affiliated Gamaredon cybercrime group in their attacks...
TRIPLESTRENGTH Hits Cloud for Cryptojacking, On-Premises Systems for Ransomware
Google on Wednesday shed light on a financially motivated threat actor named TRIPLESTRENGTH for its opportunistic targeting of cloud environments...
New Tanzeem Android Malware Linked to DoNot Team Targeting Acquisition of Information
A new Android malware connected to the DoNot Team has emerged in sophisticated cyber campaigns. Cyfirma, a cybersecurity firm, discovered...
Change in Strategy by Russian Star Blizzard to Utilize WhatsApp QR Codes for Gathering Credentials
A new phishing operation has been associated with the Russian cybercriminal group Star Blizzard. This campaign focuses on compromising WhatsApp...
RansomHub Ransomware Leveraging Python-Driven Malicious Software to Exploit Network Vulnerabilities
Researchers in the field of cybersecurity have provided a comprehensive overview of an incident wherein an attacker employed a Python-generated...
VBCloud Malware Unleashed by Cloud Atlas: Majority of Victims Detected in Russia
Cloud Atlas, a threat actor, has recently been identified deploying a new malware named VBCloud in its cyber assault operations...
