Score: 10 MALWARE FAMILY: revengeratTAGS:family:revengerat, family:xmrig, botnet:guest, discovery, evasion, miner, persistence, ransomware, stealer, trojanMD5: 19c677bb8cda5703f42c143bb4251e6aSHA1: ad85336a7304a4e58b2a4f5c40b02f578aa00923ANALYSIS DATE: 2023-01-14T05:20:28ZTTPS: T1082, T1112,...
Operators of the StrRAT and Ratty remote access trojans (RAT) are running a new campaign using polyglot MSI/JAR and CAB/JAR...
Cryptocurrency wallet provider MetaMask is warning users of a new scam called 'Address Poisoning' used to trick users into sending...
Multiple call centers across Europe controlled by a criminal organization involved in online investment fraud were taken down this week...
The Royal Mail, UK's leading mail delivery service, has stopped its international shipping services due to "severe service disruption" caused...
Australia's Fire Rescue Victoria has disclosed a data breach caused by a December cyberattack that is now claimed by the...
The LockBit ransomware operation has again taken center stage in the ransomware news, as we learned yesterday they were behind...
Microsoft warned customers today that Exchange Server 2013 will reach its extended end-of-support (EOS) date 90 days from now, on...
Microsoft says Cuba ransomware threat actors are hacking Microsoft Exchange servers unpatched against a critical server-side request forgery (SSRF) vulnerability...
Fortinet says unknown attackers exploited a FortiOS SSL-VPN zero-day vulnerability patched last month in attacks against government organizations and government-related...
Gen Digital, formerly Symantec Corporation and NortonLifeLock, is sending data breach notifications to customers, informing them that hackers have successfully...
Attacks targeting government agencies and military bodies in multiple countries in the APAC region have been attributed to what appears...
Three popular WordPress plugins with tens of thousands of active installations are vulnerable to high-severity or critical SQL injection vulnerabilities,...
A cyberattack on Royal Mail, UK's largest mail delivery service, has been linked to the LockBit ransomware operation. Yesterday, the...
Cisco warned customers today of a critical authentication bypass vulnerability with public exploit code affecting multiple end-of-life (EoL) VPN routers....
A financially motivated threat actor tracked as Scattered Spider was observed attempting to deploy Intel Ethernet diagnostics drivers in a...
Hackers are actively exploiting a critical vulnerability patched recently in Control Web Panel (CWP), a tool for managing servers formerly...
The Gootkit loader malware operators are running a new SEO poisoning campaign that abuses VLC Media Player to infect Australian...
A Canadian systems security consultant discovered that an Android TV box purchased from Amazon was pre-loaded with persistent, sophisticated malware...
Twitter finally addressed reports that a dataset of email addresses linked to hundreds of millions of Twitter users was leaked...
A team of researchers from ETH Zurich has published a paper describing multiple security flaws in Threema, a secure end-to-end...
In early August, the Malwarebytes Threat Intelligence team identified a new attack targeting government entities in Sri Lanka. The threat...
Malwarebytes Threat Intelligence builds a monthly picture of ransomware activity by monitoring the information published by ransomware gangs on their...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
