malware

Follow me on twitter Follow @RedPacketSec and join the Telegram channel The Seoul skyline in South Korea (Flickr – Laurie Nevayhttps://www.flickr.com/photos/laurienevay/, CC BY-SA 2.0 https://creativecommons.org/licenses/by-sa/2.0, via Wikimedia Commons). A newly reported supply chain attack involved malicious hackers compromising financial and government websites so they would deliver malware to unsuspecting visitors. […]

Follow me on twitter Follow @RedPacketSec and join the Telegram channel A new Grelos skimmer variant tied to Magecart Group could potentially lure online shoppers to fill out phony payment forms over the upcoming holidays. A unique cookie could allow attackers to connect to a recent variant of the Grelos […]

Follow me on twitter Follow @RedPacketSec and join the Telegram channel An intense presidential election and a grueling week of vote counting has left many Americans distracted from their work, anxious for the latest news and less vigilant about other threats. That’s precisely what many cyber criminals are counting on. […]

Follow me on twitter Follow @RedPacketSec and join the Telegram channel According to details Kaspersky released to the media, the new wave in the U.S. was detected Oct. 29 and targeted users in a variety of U.S. states, including Connecticut, Louisiana and Wisconsin. (Alexxsun/CC BY-SA 4.0) Kaspersky’s threat monitoring system […]

Follow me on twitter Follow @RedPacketSec and join the Telegram channel The Treasury Department’s Office of Foreign Assets Control sanctioned a Russian government research institution linked to Triton malware targeting industrial safety systems, the first time the U.S. took such an action for an industrial control system attack. Treasury Secretary […]

Follow me on twitter Follow @RedPacketSec and join the Telegram channel Pictured: President Donald Trump in the Presidential Suite at Walter Reed National Military Medical Center on Oct. 3, after being diagnosed with COVID-19. (Official White House Photo by Joyce N. Boghosian) A go-to strategy among cyberattackers is developing phishing […]

Follow me on twitter Follow @RedPacketSec and join the Telegram channel The very anti-malware solutions meant to protect organizations for things like increasing privilege can be exploited to do just that. The solutions “may unintentionally assist malware in gaining more privileges on the system,” according to a CyberArk blog post […]

Follow me on twitter Follow @RedPacketSec and join the Telegram channel The United States ran a full-court press against Iranian hackers last week, including indictments from the Department of Justice, the FBI identifying malware used in attacks, and the addition of government-aligned hackers to the sanctions list by Treasury. In […]

Follow me on twitter Follow @RedPacketSec and join the Telegram channel Apple appears to have inadvertently approved OSX.Shlayer malware as part of the security notarization process it has touted would boost user confidence that the Developer ID-signed software they distribute has the innovative tech giant’s seal of approval. “While it […]

Follow me on twitter Follow @RedPacketSec and join the Telegram channel String of ATMs seen at Hartsfield-Jackson Atlanta International Airport. A trojan infected NCR Corporation, potentially posing a supply chain risk to customers of the popular point-of-sale and ATM software developer.(Photo by: Jeffrey Greenberg/Universal Images Group via Getty Images) A […]

Join the Telegram channel The hacker collective known as DeathStalker has recently widened its footprint to include small to medium-sized business (SMB) targets in the financial sector throughout Europe, Middle East, Asia and Latin America. Deathstalker’s tactics, techniques and procedures aren’t different from when it first emerged as a hacker-for-hire, […]

Join the Telegram channel Pictured: The Forbidden City, in Beijing. Experts say Chinese APT operations use a mix of proprietary and publicly available tools to spy on institutions around the world. (Frédéric Soltan/Corbis via Getty Images) Chinese APT operations have an army of coders at their disposal, and an array […]

Join the Telegram channel In an attack described as a “clever” supply-chain threat, XCSSET malware is being injected undetected into programs created by unwitting Xcode Apple developers who share their projects on the GitHub repository. The “unusual infection” can pilfer infected users’ credentials, accounts and other vital data, according to […]

Join the Telegram channel The Department of Homeland Security and Federal Bureau of Investigation published an alert Wednesday about malware it claims North Korea has been using to hack defense contractors. The alert, which provides a detailed technical analysis of the “BLINDINGCAN” trojan, appears to be tied to several reported […]

Join the Telegram channel The FBI and NSA jointly issued an advisory on Drovorub – a newly disclosed malware program targeting Linux systems. (Jan Woitas/picture alliance via Getty Images) Linux users should not assume they are safe from the ambitions and reach of reputed Russian hacking group Fancy Bear, which […]

Join the Telegram channel Australian design platform Canva unwittingly provided phishing campaigns with graphics, making threat actors’ schemes appear more legitimate as they pilfer credentials through social engineering trickery. Hackers hijacked the graphic design site, owned by the fast-growing company whose valuation recently grew from $3.2 billion to $6 billion, […]

Join the Telegram channel The proliferation of Shadow Code – third-party scripts and open source libraries used in web applications – may help organizations accelerate their digital transformations but it also puts them at higher risk of cyberattack. Security teams are finding the Shadow Code, the code equivalent to rogue […]

Join the Telegram channel It may be unsophisticated but the Agent Tesla RAT is “street-wise,” adapting and evolving just enough to wreak havoc on organizations’ security efforts. Recent improvements to the malware include more robust spreading and injection methods, as well as discovery and theft of wireless network details and […]

Join the Telegram channel As user organizations move more of their business infrastructure off premises, cybercriminals become increasingly motivated to target Linux-based cloud environments, including Docker servers with misconfigured API ports. And while cryptojacking schemes comprise some of the more conventional varieties of these Linux-based malware attacks, researchers have just […]

Join the Telegram channel The Dacls remote access trojan that is capable of attacking Windows, Linux and macOS environments has been used to distribute VHD ransomware and to target customer databases for attempted exfiltration, according to researchers. Kaspersky on Wednesday revealed this latest intel on Dacls in a company blog […]