Tag: Malware - Page 2

21 Feb

APT37 Malware Deployed by North Korea to Target South Korea

The North Korea-linked threat actor tracked as APT37 has been linked to a piece of new malware dubbed M2RAT in attacks targeting its southern counterpart, suggesting continued evolution of the group's features and tactics.APT37, also tracked under the monikers Reaper, RedEyes, Ricochet Chollima, and ScarCruft, is linked to North Korea's Ministry of State Security (MSS) unlike the Lazarus and...

20 Feb

Financial Cybercriminals Deploy Ransomware and Clipper Malware

in Cyber Security, Cybersecurity, Ransomware

Comments

A new financially motivated campaign that commenced in December 2022 has seen the unidentified threat actor behind it deploying a novel ransomware strain dubbed MortalKombat and a clipper malware known as Laplas.Cisco Talos said it "observed the actor scanning the internet for victim machines with an exposed remote desktop protocol (RDP) port 3389."The attacks, per the cybersecurity company,...

18 Feb

The Rising Risks of Cryptocurrency Use: Exploring Enigma, Vector, and TgToxic

in Cyber Security, Cybersecurity

Comments

Suspected Russian threat actors have been targeting Eastern European users in the crypto industry with fake job opportunities as bait to install information-stealing malware on compromised hosts.The attackers "use several highly obfuscated and under-development custom loaders in order to infect those involved in the cryptocurrency industry with Enigma stealer," Trend Micro researchers Aliakbar...

17 Feb

VMware ESXi Server Ransomware Attack Evolves, Recovery Script Released

in Cyber Security, Cybersecurity, Ransomware, Security, Servers

Comments

The FBI and CISA have released a recovery script for the global ESXiArgs ransomware campaign targeting VMware ESXi servers, but the ransomware has since been updated to elude former attempts at remediation....

19 Feb

MoonBounce UEFI implant used by spy group brings firmware security into spotlight

in Cyber Security, Cybersecurity

Comments

Researchers uncovered a stealthy UEFI rootkit that's being used in highly targeted campaigns by a notorious Chinese cyberespionage group with suspected government ties. The group is known for using software supply-chain attacks in the past. Dubbed MoonBounce by researchers from Kaspersky Lab, the implant's goal is to inject a malicious driver into the Windows kernel during the booting stages, providing attackers with a high level...

Malware Tag

APT37 Malware Deployed by North Korea to Target South Korea

Financial Cybercriminals Deploy Ransomware and Clipper Malware

VMware ESXi Server Ransomware Attack Evolves, Recovery Script Released

MoonBounce UEFI implant used by spy group brings firmware security into spotlight

Cloud Backup Feature for TOTP Codes Now Available on Google Authenticator App

Accounts left vulnerable to permanent compromise due to Google OAuth bug

How Fancy Bear Infected Routers Using an Old SNMP Bug

AI-generated YouTube videos used to distribute difficult-to-detect malware loader

Navigation

Connect with us on social