The stealthy backdoor is delivered via mass-market phishing emails that are well-crafted to appear convincing.
Researchers uncovered a new advanced variant of Turla’s ComRAT backdoor that leverages Gmail’s web interface as C2 infrastructure. Cybersecurity researchers discovered a new version of the ComRAT backdoor, also known as Agent.BTZ, which is a malware that was employed in past campaigns attributed to the Turla APT group. Earlier versions of Agent.BTZ were used to […]
The post New Turla ComRAT backdoor uses Gmail for Command and Control appeared first on Security Affairs.
Recently, security researchers have discovered a new version of Windows malware that opens the RDP port on the Windows PCs for future remote access. The security researcher of SentinelOne, Jason Reaves, has revealed that this new version of malware is …
By Deeba Ahmed
Winnti hacking group previously targeted GRAVITY gaming firm in South Korea.
This is a post from HackRead.com Read the original post: Winnti hacking group hits gaming firms with new backdoor malware
Hackers taking advantage of the video conferencing apps like Zoom to infect systems with malicious routines. Security researchers from Trend Micro observed two malware samples that pose as Zoom installers but when decoded it contains malware. The malic…
Our colleagues at Checkpoint put together a fine research writeup on some Naikon resources and activity related to “aria-body” that we detected in 2017 and similarly reported in 2018.
The Chinese APT has been discovered behind a five-year espionage campaign that compromises government servers – and uses that as leverage for other attacks.
Once again, Android users need to be careful while downloading apps from the Play Store. Researchers have discovered a wave
PhantomLance Malware Campaign Has Taken Over Android Play Store on Latest Hacking News.
For more than two years, the Global Research and Analysis Team (GReAT) at Kaspersky has been publishing quarterly summaries of advanced persistent threat (APT) activity. This is our latest installment, focusing on activities that we observed during Q1 2020.
A vulnerability in the defunct OneTone WordPress theme plugin is being exploited to compromise entire sites while installing backdoor admin accounts.