campaigns
-
Sophos X-Ops has uncovered two distinct ransomware campaigns to infiltrate organizations via Microsoft Office 365 and Teams. Tracked The post STAC5143 and STAC5777: New Ransomware Campaigns Target Microsoft Office 365 Users appeared first on Cybersecurity News.
-
Both campaigns involved the distribution of malicious emails purporting to be invoices, purchase orders, or quotation requests with attachments, which when opened triggers a PowerShell script fetching the trojanized image and executing a .NET-based loader to launch the payloads.
-
Cybercriminals are targeting corporate executives with highly advanced mobile spear phishing attacks, leveraging sophisticated evasion techniques and exploiting the inherent vulnerabilities of mobile devices, a new report reveals. In today’s… The post Cybercriminals Go Mobile: Executives Targeted in Advanced Phishing Campaigns appeared first on Cybersecurity News.
-
Threat researchers have identified a persistent series of malvertising campaigns targeting graphic design professionals, using Google Search ads as a vector.
-
Dec 10, 2024The Hacker NewsMalware Analysis / Cyber Threat
-
The latest findings from ThreatLabz reveal two novel malware families, RevC2 and Venom Loader, actively deployed in campaigns between August and October 2024. Leveraging the Malware-as-a-Service (MaaS) platform of the prolific threat actor Venom Spider, also known as GOLDEN CHICKENS, these campaigns signal an alarming evolution in cybercriminal strategies.
-
A comprehensive analysis by TRAC Labs has shed light on the SMOKEDHAM backdoor, a malicious tool leveraged by the financially motivated threat actor UNC2465. Active since 2019, SMOKEDHAM plays a central role in complex extortion and ransomware operations, marking UNC2465 as one of the most persistent and adaptive threat groups in the cybersecurity landscape.
-
Nov 12, 2024Ravie LakshmananEmail Security / Threat Intelligence
-
Introduction In 2021, we began to investigate an attack on the telecom industry in South Asia. During the investigation, we discovered QSC: a multi-plugin malware framework that loads and runs plugins (modules) in memory. The framework includes a Loader, a Core module, a Network module, a Command Shell module and a File Manager module. It…
-
In a recent report, Zscaler ThreatLabz uncovers the creative yet deceptive strategies used by North Korean threat actors to infiltrate Western job markets. Through two interconnected campaigns—Contagious Interview and WageMole—these cyber operatives secure remote employment in industries like IT and cryptocurrency, bypassing economic sanctions while exfiltrating sensitive data.
-
U.S. officials on Monday exposed two more pieces of Russian election disinformation, hours before millions Americans cast their ballots in the too close to call presidential race.
-
The Netcraft research team recently revealed details about a new and distinct phishing kit known as “Xiū Gǒu” (修狗). In use since September 2024, this phishing toolkit has been deployed in targeted campaigns across the US, UK, Spain, Australia, and Japan, with over 2,000 phishing websites identified. The report states that Xiū Gǒu is actively…
-
Retired Gen. Paul Nakasone is one of America’s first cyberwarriors. He was the architect of Cyber Command and created a strategy that fundamentally changed the way the world viewed cyber operations in the modern age.
-
EXECUTIVE SUMMARY: Software-as-a-Service platforms and their clients face an insidious type of phishing-based threat. Organizations that fail to get ahead of it can experience lasting consequences.
-
MalBot October 31, 2024, 12:40pm 1 Sophos X-Ops unveils five-year investigation tracking China-based groups targeting perimeter devices
-
in brief Senate intelligence committee chair Mark Warner (D-VA) is demanding to know why, in the wake of the bust-up of a massive online Russian disinformation operation, the names of six US-based domain registrars seem to keep popping up as, at best, negligent facilitators of election meddling.
-
Hi clever marketer, are you need a fun way to liven up seasonal campaigns and you considered stickers. Yes, those little adhesive wonders can promote your brand well. Stickers may be your secret holiday, back to school or summer marketing weapon. Lets discuss how stickers can make your seasonal marketing stickier.
-
Cybersecurity incidents in 2023 were analyzed in a recent report by Comcast Business. Phishing remains the primary method used by attackers to gain initial access to networks, with over 2.6 billion interactions detected, according to the report. Additionally, over 90% of the phishing interactions that were blocked were designed to direct victims to phishing sites…
-
China’s National Computer Virus Emergency Response Center (CVERC) has doubled down on claims that the threat actor known as the Volt Typhoon is a fabrication of the U.S. and its allies.