Malware – Page 242 – MCYSEKA-Maritime Cyber Security Knowledge Archive

UNC2565 threat actors continue to improve the GOOTLOADER malware

The threat actors behind the GOOTLOADER malware continues to improve their code by adding new components and implementing new obfuscation techniques. Mandiant researchers reported that the UNC2565 group behind the GOOTLOADER malware (aka Gootkit) continues to improve their code by adding new components and implementing new obfuscation techniques. Gootkit runs on an access-a-as-a-service model, it is used […]

The post UNC2565 threat actors continue to improve the GOOTLOADER malware appeared first on Security Affairs.

January 30, 2023

0 comment

Security Affairs newsletter Round 404 by Pierluigi Paganini

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. Copycat Criminals mimicking Lockbit gang in northern Europe Sandworm APT targets Ukraine with new SwiftSlicer wiper […]

The post Security Affairs newsletter Round 404 by Pierluigi Paganini appeared first on Security Affairs.

January 29, 2023

0 comment

Copycat Criminals mimicking Lockbit gang in northern Europe

Recent reports of Lockbit locker-based attacks against North European SMBs indicate that local crooks started using Lockbit locker variants. Executive Summary Incident Insights Recently, there has been a significant increase in ransomware attacks targeting companies in northern Europe. These attacks are being carried out using the LockBit locker, which is known to be in use […]

The post Copycat Criminals mimicking Lockbit gang in northern Europe appeared first on Security Affairs.

January 29, 2023

0 comment

Sandworm APT targets Ukraine with new SwiftSlicer wiper

Russia-linked Sandworm APT group is behind a new Golang-based wiper, tracked as SwiftSlicer, that hit Ukraine, ESET reports. Researchers from ESET discovered a new Golang-based wiper, dubbed SwiftSlicer, that was used in attacks aimed at Ukraine. The experts believe that the Russia-linked APT group Sandwork (aka BlackEnergy and TeleBots) is behind the wiper attacks. The Sandworm group has been […]

The post Sandworm APT targets Ukraine with new SwiftSlicer wiper appeared first on Security Affairs.

January 28, 2023

0 comment

PlugX Malware Sneaks Onto Windows PCs Through USB Devices

By Deeba Ahmed
The new variant stood out among other malware because it can infect any attached removable USB device, e.g., floppy, flash, thumb drives, and any system the removable device is plugged into later.
This is a post from HackRead.com Read t…

January 27, 2023

0 comment

LATEST CYBERTHREATS AND ADVISORIES – JANUARY 27, 2023

Alerts from national cybersecurity agencies, gaming developer attacks and the Mailchimp/FanDuel breach. Here are the latest threats and advisories for the week of January 27, 2023. Threat Advisories and Alerts CISA Publishes Report to Help Protect Schools from Cyberthreats The recent surge in cyberattacks against the education sector has led the U.S. Cybersecurity and Infrastructure Security Agency (CISA) to release a report addressing the issue. The COVID-19 pandemic made educational institutions increasingly vulnerable to cyberthreats, as virtual learning became widespread and led to the rapid adoption of new and untested technologies. The report titled “Partnering to Safeguard K-12 Organizations from…

January 27, 2023

0 comment

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

The BlackCat Ransomware group claims to have hacked SOLAR INDUSTRIES INDIA and to have stolen 2TB of “secret military data.” The BlackCat Ransomware gang added SOLAR INDUSTRIES INDIA to the list of victims published on its Tor leak site. The company is a globally recognised industrial explosives manufacturer, it provides complete blasting solutions, including packaged, […]

The post BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer appeared first on Security Affairs.

January 27, 2023

0 comment

Hive Ransomware Gang Disrupted; Servers and Dark Web Site Seized

By Waqas
The FBI and Europol have obtained decryption keys for the Hive ransomware, which they have already shared with victims.
This is a post from HackRead.com Read the original post: Hive Ransomware Gang Disrupted; Servers and Dark Web Site Seized

January 27, 2023

0 comment

New Python Malware Targeting Windows Devices

By Deeba Ahmed
Dubbed PY#RATION by researchers; the new Python malware is equipped with RAT behaviour and info-stealing capabilities.
This is a post from HackRead.com Read the original post: New Python Malware Targeting Windows Devices

January 27, 2023

0 comment

Threat Groups Distributing Malware via Google Ads

Security researchers are warning that Google Ads are being actively leveraged to distribute malware to unsuspecting victims searching for software downloads. On January 20, CronUp researcher Germán Fernández warned that the DEV-0569 ransomware group is using Google Ads to distribute Gozi/Ursnif malware, RedLine stealer, and Royal ransomware. “For deployment, they use Add-MpPreference to configure exclusions […]

The post Threat Groups Distributing Malware via Google Ads appeared first on eSecurityPlanet.

January 26, 2023

0 comment

1 … 240 241 242 243 244 … 256