Apple delivers first-ever Rapid Security Response “cyberattack” patch – leaves some users confused
Just when we’d got used to three-numbered versions, such as “13.3.1”, here comes an update suffix, bringing you “13.3.1 (a)”…
Experts spotted a new sophisticated malware toolkit called Decoy Dog
Infoblox researchers discovered a new sophisticated malware toolkit, dubbed Decoy Dog, targeting enterprise networks. While analyzing billions of DNS records, Infoblox researchers discovered a sophisticated malware toolkit, dubbed Decoy Dog, that was employed in attacks aimed at enterprise networks. Threat actors behind the malware were observed using known tricks to avoid detection such as registering a domain, […]
The post Experts spotted a new sophisticated malware toolkit called Decoy Dog appeared first on Security Affairs.
Iranian govt uses BouldSpy Android malware for internal surveillance operations
Iranian authorities have been spotted using the BouldSpy Android malware to spy on minorities and traffickers. Researchers at the Lookout Threat Lab have discovered a new Android surveillance spyware, dubbed BouldSpy, that was used by the Law Enforcement Command of the Islamic Republic of Iran (FARAJA). The researchers are tracking the spyware since March 2020, starting in […]
The post Iranian govt uses BouldSpy Android malware for internal surveillance operations appeared first on Security Affairs.
New ‘Lobshot’ hVNC Malware Used by Russian Cybercriminals
Russian cybercrime group TA505 has been observed using new hVNC malware called Lobshot in recent attacks.
The post New ‘Lobshot’ hVNC Malware Used by Russian Cybercriminals appeared first on SecurityWeek.
Russian APT Nomadic Octopus hacked Tajikistani carrier
Russian APT group Nomadic Octopus hacked a Tajikistani carrier to spy on government officials and public service infrastructures. Russian cyber espionage group Nomadic Octopus (aka DustSquad) has hacked a Tajikistani telecoms provider to spy on 18 entities, including high-ranking government officials, telecommunication services, and public service infrastructures. The cyberspies compromised a broad range of devices, […]
The post Russian APT Nomadic Octopus hacked Tajikistani carrier appeared first on Security Affairs.
HiddenAds Adware Target Android Via Minecraft App Clones
Heads up, Android users! The notorious HiddenAds adware again targets Android users by impersonating legit…
HiddenAds Adware Target Android Via Minecraft App Clones on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testi…
Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies
CERT-UA warns of a spear-phishing campaign conducted by APT28 group targeting Ukrainian government bodies with fake ‘Windows Update’ guides. Russia-linked APT28 group is targeting Ukrainian government bodies with fake ‘Windows Update’ guides, Computer Emergency Response Team of Ukraine (CERT-UA) warns. The APT28 group (aka Fancy Bear, Pawn Storm, Sofacy Group, Sednit, and STRONTIUM) has been active since at least 2007 and it has targeted governments, […]
The post Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies appeared first on Security Affairs.
Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. ViperSoftX uses more sophisticated encryption and anti-analysis techniques Atomic macOS Stealer is advertised on Telegram for […]
The post Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition appeared first on Security Affairs.
Mac malware-for-hire steals passwords and cryptocoins, sends “crime logs” via Telegram
These malware peddlers are specifically going after Mac users. The hint’s in the name: “Atomic macOS Stealer”, or AMOS for short.
ViperSoftX uses more sophisticated encryption and anti-analysis techniques
A new variant of the information-stealing malware ViperSoftX implements sophisticated techniques to avoid detection. Trend Micro researchers observed a new ViperSoftX malware campaign that unlike previous attacks relies on DLL sideloading for its arrival and execution technique. The variant employed in the campaign supports a more sophisticated encryption method of byte remapping and a monthly […]
The post ViperSoftX uses more sophisticated encryption and anti-analysis techniques appeared first on Security Affairs.