Delaware, USA – October 7, 2019 – Last week, three hospitals of the DCH Health System were attacked by the Ryuk gang and were forced to close the doors and accept only critical patients. The attack took place on October 1, and for several days IT personal with the help of law enforcement and independent […]
Delaware, USA – October 4, 2019 – The new sophisticated remote access trojan by Turla APT not only provides attackers with full access to the victim’s system but also modifies Chrome and Firefox browsers to manipulate digital certificates and mark outbound TLS traffic with unique host-related identifiers. Kaspersky Lab researchers discovered Reductor RAT during the […]
Delaware, USA – October 3, 2019 – The campaign lasted at least until the end of September, and researchers associate it with the activities of the Gorgon group. The Prevailion team found a financially motivated campaign, which began last year and uses legitimate resources to infect victims with Azorult or RevengeRAT malware, and for command-and-control […]
Delaware, USA – October 2, 2019 – An ongoing campaign by one of the Chinese cyber-espionage groups targets technology companies in Southeast Asia. BlackBerry Cylance discovered a campaign lasting about two years and distributing a modified PcShare backdoor and trojanized Narrator executable. According to a recent Crowdstrike report on the activity of state-sponsored hackers, Chinese […]
Delaware, USA – October 1, 2019 – Adversaries take advantage of the fact that many antivirus solutions do not carefully scan OpenDocument Text files. Security researchers at the Cisco Talos team have discovered the use of ODT files to spread malware in several campaigns targeting English and Arabic speaking users. The files used are archives […]
Delaware, USA – September 30, 2019 – One of the most sophisticated Magecart groups is exploring new ways to steal payment card data. IBM X-Force team discovered Magecart scripts which can be deployed on Level 7 routers that are capable of manipulating traffic at the application level. It is not known whether scripts were used […]
Delaware, USA – September 25, 2019 – SOC Prime, Inc. is pleased to announce Thomas Patzke joins our Advisory Board. Thomas is one of the most inspiring experts in the cyber security community who has 13+ years of experience in the area of information security, currently works as blue teamer and threat hunter at thyssenkrupp […]
Delaware, USA – September 24, 2019 – In late summer, Fancy Bear launched a new campaign targeting Ministries of Foreign Affairs and embassies in Europe and Central Asia with rewritten Zebrocy backdoor. The campaign started on August 20, and two days later it was discovered by Telsy’s researchers. Unlike past companies, cybercriminals send an empty […]
Delaware, USA – September 24, 2019 – Instead of stopping the campaign, the LookBack trojan operators changed the text of the phishing emails and continued to attack organizations in the US Utilities Sector. Proofpoint researchers continued their investigation of LookBack malware attacks and found that there were significantly more attacked companies, and the campaign itself […]
Delaware, USA – September 23, 2019 – Lazarus group expanded their toolset with Dtrack remote access trojan to attack research centers and financial organizations in India. Kaspersky Lab published the report describing the infection process and malware capabilities. Researchers discovered ATMDtrack malware used in attacks on Indian banks a year ago, and a search for […]