Malware

Play ransomware affiliate leveraged zero-day to deploy malwarePlay ransomware affiliate leveraged zero-day to deploy malware

Play ransomware affiliate leveraged zero-day to deploy malware

The Play ransomware gang exploited a high-severity Windows Common Log File System flaw in zero-day attacks to deploy malware. The Play…

2 weeks ago
NSO Group must pay WhatsApp over $167M in damages for attacks on its usersNSO Group must pay WhatsApp over $167M in damages for attacks on its users

NSO Group must pay WhatsApp over $167M in damages for attacks on its users

NSO Group must pay WhatsApp over $167M in damages for a 2019 hack targeting 1,400+ users, per U.S. jury ruling…

2 weeks ago
Experts shared up-to-date C2 domains and other artifacts related to recent MintsLoader attacksExperts shared up-to-date C2 domains and other artifacts related to recent MintsLoader attacks

Experts shared up-to-date C2 domains and other artifacts related to recent MintsLoader attacks

MintsLoader is a malware loader delivering the GhostWeaver RAT via a multi-stage chain using obfuscated JavaScript and PowerShell. Recorded Future…

2 weeks ago
Sansec uncovered a supply chain attack via 21 backdoored Magento extensionsSansec uncovered a supply chain attack via 21 backdoored Magento extensions

Sansec uncovered a supply chain attack via 21 backdoored Magento extensions

Supply chain attack via 21 backdoored Magento extensions hit 500–1,000 e-stores, including a $40B multinational. Sansec researchers reported that multiple…

2 weeks ago
US authorities have indicted Black Kingdom ransomware adminUS authorities have indicted Black Kingdom ransomware admin

US authorities have indicted Black Kingdom ransomware admin

A 36-year-old Yemeni man behind Black Kingdom ransomware is indicted in the U.S. for 1,500 attacks on Microsoft Exchange servers.…

2 weeks ago
Malicious Go Modules designed to wipe Linux systemsMalicious Go Modules designed to wipe Linux systems

Malicious Go Modules designed to wipe Linux systems

Researchers found 3 malicious Go modules with hidden code that can download payloads to wipe a Linux system's main disk,…

2 weeks ago
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 44SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 44

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 44

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape io_uring…

2 weeks ago
Hive0117 group targets Russian firms with new variant of DarkWatchman malwareHive0117 group targets Russian firms with new variant of DarkWatchman malware

Hive0117 group targets Russian firms with new variant of DarkWatchman malware

Hive0117 targets Russian firms in multiple sectors with phishing attacks using a modified version of the DarkWatchman malware. A cybercrime…

3 weeks ago
Russia-linked group Nebulous Mantis targets NATO-related defense organizationsRussia-linked group Nebulous Mantis targets NATO-related defense organizations

Russia-linked group Nebulous Mantis targets NATO-related defense organizations

PRODAFT researchers warn of Russia-linked APT group Nebulous Mantis targeting NATO-related defense organizations Nebulous Mantis, a Russian-speaking cyber espionage group…

3 weeks ago
France links Russian APT28 to attacks on dozen French entitiesFrance links Russian APT28 to attacks on dozen French entities

France links Russian APT28 to attacks on dozen French entities

France blames Russia-linked APT28 for cyberattacks targeting or compromising a dozen French government bodies and other entities. The Russia-linked APT28…

3 weeks ago
Show more Posts
Show previous Posts