Delaware, USA – December 2, 2019 – New malware collects credentials saved in the Google Chrome and abuses MongoDB instead of connecting to command-and-control infrastructure. CStealer is a simple trojan discovered by MalwareHunterTeam and analyzed by security researcher @James_inthe_box. What makes it special is the way of exfiltrating stolen information: the malware leverages hardcoded credentials […]
Delaware, USA – November 29, 2019 – The RevengeHotels campaign is conducted by several separate cybercriminal groups that have been able to compromise more than 20 hotels in South and Central America, Europe and Thailand. Kaspersky Lab experts found two groups with similar Tactics, Techniques, and Procedures that have been active since at least 2015 […]
Delaware, USA – November 28, 2019 – Another Spanish company was forced to interrupt operations this month due to a ransomware attack. Wednesday morning Prosegur, a worldwide private security company, faced a cybersecurity incident disrupting its telecommunication platform. The attack affected all company’s locations in Europe; Prosegur shut down its network and restricted communications with […]
Delaware, USA – November 27, 2019 – At the peak of activity, Dexphot polymorphic malware was spotted on about 80,000 systems. The Microsoft Defender ATP Research Team tracked this threat for more than a year, noting that the malware uses advanced techniques that are often used by APT groups. Dexphot is delivered to systems previously […]
Delaware, USA – November 26, 2019 – At least a third of active Exploit Kits have started using fileless attacks to spread malware. Malwarebytes monitors the EK landscape and their recent report sheds fresh light on changes in techniques used. Even though experts have long been predicting a decline in Exploit Kits, they are not […]
Delaware, USA – November 25, 2019 – TrickBot authors have been testing the possibility of stealing OpenSSH and OpenVPN sensitive data: passwords, private keys, and configuration files since the beginning of the month. The first infection with trojan using the updated password grabber module occurred on November 8, Palo Alto Network researchers analyzed the discovered […]
Delaware, USA – November 22, 2019 – The fresh Remote Access Trojan was first discovered a week ago by MalwareHunterTeam, prompting researchers from G Data to search for other samples and analyze them. SectopRAT malware is still in an active stage of development, but already has interesting functions, and the detected samples are more likely […]
Delaware, USA – November 21, 2019 – New peer-to-peer botnet exploits the recently patched vulnerability in Webmin web-based system administration tool to infect Linux servers. CVE-2019-15107 was patched in August this year, and just a few days later adversaries began to exploit this vulnerability, among the ‘attackers’ was Roboto botnet spotted by researchers at 360 […]
Delaware, USA – November 20, 2019 – Phoenix keylogger, which appeared this summer and is actively promoted on hacker forums, in four months has turned into a full-fledged infostealer, which has powerful anti-detection and anti-analysis modules. Cybereason researchers tracked this malware to its predecessor, Alfa keylogger which disappeared in a few months before Phoenix emerges. […]
Delaware, USA – November 19, 2019 – After a break, the cybercriminals resumed attacks on government systems in the United States. This time, the adversaries set their sights on Louisiana state government systems immediately after Governor John Bel Edwards was re-elected for a second term. The attack occurred on Monday, around 11 a.m. and at […]