Computer Security
RedEnergy Stealer Strikes at Industrial Entities
A highly sophisticated ransomware and data-stealing threat named RedEnergy has been identified, targeting energy utilities, oil, gas, telecom, and machinery sectors in Brazil and the Philippines through their LinkedIn... Read more
Meduza Infostealer Scrapes Logins from Cryptowallets and Browsers
Researchers specializing in cybersecurity have recently identified a newly developed Windows-based information stealer called Meduza Stealer. The creator of this malware is actively working on evading detection by... Read more
North Korean Threat Actor Deploys EarlyRat
Researchers have discovered that the threat actor known as Andariel, aligned with North Korea, utilized a previously unknown malware named EarlyRat in attacks exploiting the Log4j Log4Shell vulnerability last year. In... Read more
Anatsa Android Trojan Targets Victims in the US and Europe
A recent Android malware campaign has been identified, aiming to distribute the Anatsa banking trojan and target customers of financial institutions in the United States, United Kingdom, Germany, Austria, and... Read more
Operation Triangulation Targets iOS Devices with Novel Malware
While monitoring the network traffic of their dedicated corporate Wi-Fi network for mobile devices, researchers at Securelist detected suspicious activity originating from multiple iOS-based phones. Due to the... Read more
FadeStealer Employed by ScarCruft APT
The North Korean threat group ScarCruft has recently been observed utilizing a previously undisclosed information-stealing malware that includes wiretapping capabilities. Additionally, they have developed a backdoor... Read more
Mexican Hacker Spreads Android Banking Malware
A cybercriminal entity with Mexican origins has been identified as the perpetrator of a global Android mobile malware campaign aimed at financial institutions. The campaign, which took place between June 2021 and... Read more
Iranian APT Employs POWERSTAR Backdoor Malware
Charming Kitten, a state-sponsored threat actor linked to Iran's Islamic Revolutionary Guard Corps (IRGC), has been identified as the perpetrator of a sophisticated spear-phishing campaign. The campaign delivers an... Read more
Crypto Exchange Infected With Novel Mac Malware
A group of researchers has made a groundbreaking discovery by uncovering previously unknown Mac malware that has infected a cryptocurrency exchange. This malicious software, known as JokerSpy, possesses a... Read more
RedEnergy Stealer Mixes Ransomware and Infostealer in One
Zscaler ThreatLabz recently made an intriguing discovery, uncovering a new variation of malware called RedEnergy stealer. This particular malware falls under the category of Stealer-as-a-Ransomware, although it should... Read more
Critical Vulnerability Found in WordPress E-Commerce Plugin Used by Over 30,000 Online Stores
It has been reported that the WordPress "Abandoned Cart Lite for WooCommerce" plugin, installed on more than 30,000 websites, has a critical security vulnerability. According to an advisory from Defiant's Wordfence,... Read more
Apple Patches Actively Exploited Zero-Day in Its Ecosystem
Apple has recently rolled out a series of updates for its operating systems and Safari browser, addressing several vulnerabilities that were actively being exploited by unknown threat actors. Among these... Read more
DDoSia Malware Updated, Adding Encryption
According to cybersecurity company Sekoia, the creators of the DDoSia attack tool have introduced a new version that incorporates a different method for obtaining the list of targets to be bombarded with junk HTTP... Read more
ThirdEye Stealer Scrapes System Information
A novel information-stealing malware named ThirdEye has emerged in the wild, capable of extracting sensitive data from compromised systems. Fortinet FortiGuard Labs made this discovery when they stumbled upon the... Read more
8Base Ransomware Attacks Pick Up in Volume in Mid-2023
An under-the-radar ransomware threat known as 8Base has recently experienced a significant increase in activity during May and June 2023, according to researchers from VMware Carbon Black. This group employs... Read more
Chinese Volt Typhoon APT Targets US Entities
The Chinese nation-state actor known as Volt Typhoon, also referred to as Bronze Silhouette, has recently been discovered to be actively conducting cyber espionage operations since mid-2020. The group, identified by... Read more
CISA: US Government Hit With New Russian Cyberattacks
According to new reports, multiple US government agencies, as well as “several hundred” companies and organizations have been targeted as part of a recent Russian-based hacking spree. Eric Goldstein, executive... Read more
Mystic Stealer Targets Huge Range of Browsers, Extensions
A recently discovered malware named Mystic Stealer has been identified as a data-stealing threat capable of targeting a wide range of web browsers and browser extensions, totaling around 40 and 70, respectively.... Read more
