The APT37 threat group is using a new evasive ‘M2RAT’ malware and steganography to target individuals for intelligence gathering. APT37, also known as ‘RedEyes’ or ‘ScarCruft’, is a North Korean…
13 February 2023Ravie LakshmananCyber threat intelligence The advanced persistent threat (APT) actor known as Tonto Team carried out a failed attack on cybersecurity company Group-IB in June 2022. The Singapore-headquartered…
A campaign run by Russian threat actors is using fake job offers to target Eastern Europeans working in the cryptocurrency industry, with the aim of infecting them with a modified…
Reddit suffered a cyber attack on Sunday night that allowed hackers to access internal business systems and steal internal documents and source code. The company says the hackers used a…
Vesuvius, the London Stock Exchange-listed molten metal engineering company, says it has been hit by a cyber attack. This morning, Vesuvius issued a warning that it was “currently managing a…
February 4, 2023Ravie LakshmananZero-Day / Vulnerability A zero-day vulnerability affecting Fortra’s GoAnywhere MFT managed file transfer application is being actively exploited in the wild. Details of the bug were first…
3 February 2023Ravie LakshmananCyber espionage / Cyber threat The Iranian nation-state hacking group known as Drilling platform has continued to target government organizations in the Middle East as part of…
Security researchers warn that hackers may start using Microsoft Visual Studio Tools for Office (VSTO) more frequently as a method to achieve persistence and execute code on a target machine…
Hackers have been targeting online gaming and gambling companies with what appears to be an unprecedented backdoor that researchers have named IceBreaker. The compromise method relies on tricking customer service…
01 February 2023Ravie LakshmananCorporate Security/Authentication Microsoft said Tuesday it took steps to disable fake Microsoft Partner Network (MPN) accounts used to create malicious OAuth applications as part of a malicious…
If you’ve previously bought sneakers from sports fashion retailer JD Sports, your personal information could now be in the hands of hackers. Customers of the UK high street retailer (as…
Russian hackers are blamed for an attempted phishing attack against the Latvian Defense Ministry. Gamaredon, a Russian state-sponsored cyberespionage group, used a domain name (admou[.]org) previously linked to the gang…
Tracking the early activities of malicious hackers using open source intelligence can provide significant clues about the likelihood of them becoming a persistent threat in the future, two university researchers…
On January 17, the Ukrainian Computer Emergency Response Team (CERT-UA) found a cocktail of five different data-wiping malware strains on the network of the country’s national news agency (Ukrinform). “As…
Security researchers have identified a new data erasure malware they named SwiftSlicer, which aims to overwrite important files used by the Windows operating system. The new malware was discovered in…