Malware

NSO Group must pay WhatsApp over $167M in damages for attacks on its usersNSO Group must pay WhatsApp over $167M in damages for attacks on its users

NSO Group must pay WhatsApp over $167M in damages for attacks on its users

NSO Group must pay WhatsApp over $167M in damages for a 2019 hack targeting 1,400+ users, per U.S. jury ruling…

2 months ago
Experts shared up-to-date C2 domains and other artifacts related to recent MintsLoader attacksExperts shared up-to-date C2 domains and other artifacts related to recent MintsLoader attacks

Experts shared up-to-date C2 domains and other artifacts related to recent MintsLoader attacks

MintsLoader is a malware loader delivering the GhostWeaver RAT via a multi-stage chain using obfuscated JavaScript and PowerShell. Recorded Future…

2 months ago
Sansec uncovered a supply chain attack via 21 backdoored Magento extensionsSansec uncovered a supply chain attack via 21 backdoored Magento extensions

Sansec uncovered a supply chain attack via 21 backdoored Magento extensions

Supply chain attack via 21 backdoored Magento extensions hit 500–1,000 e-stores, including a $40B multinational. Sansec researchers reported that multiple…

2 months ago
US authorities have indicted Black Kingdom ransomware adminUS authorities have indicted Black Kingdom ransomware admin

US authorities have indicted Black Kingdom ransomware admin

A 36-year-old Yemeni man behind Black Kingdom ransomware is indicted in the U.S. for 1,500 attacks on Microsoft Exchange servers.…

2 months ago
Malicious Go Modules designed to wipe Linux systemsMalicious Go Modules designed to wipe Linux systems

Malicious Go Modules designed to wipe Linux systems

Researchers found 3 malicious Go modules with hidden code that can download payloads to wipe a Linux system's main disk,…

2 months ago
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 44SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 44

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 44

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape io_uring…

2 months ago
Hive0117 group targets Russian firms with new variant of DarkWatchman malwareHive0117 group targets Russian firms with new variant of DarkWatchman malware

Hive0117 group targets Russian firms with new variant of DarkWatchman malware

Hive0117 targets Russian firms in multiple sectors with phishing attacks using a modified version of the DarkWatchman malware. A cybercrime…

2 months ago
Russia-linked group Nebulous Mantis targets NATO-related defense organizationsRussia-linked group Nebulous Mantis targets NATO-related defense organizations

Russia-linked group Nebulous Mantis targets NATO-related defense organizations

PRODAFT researchers warn of Russia-linked APT group Nebulous Mantis targeting NATO-related defense organizations Nebulous Mantis, a Russian-speaking cyber espionage group…

2 months ago
France links Russian APT28 to attacks on dozen French entitiesFrance links Russian APT28 to attacks on dozen French entities

France links Russian APT28 to attacks on dozen French entities

France blames Russia-linked APT28 for cyberattacks targeting or compromising a dozen French government bodies and other entities. The Russia-linked APT28…

2 months ago
PoC rootkit Curing evades traditional Linux detection systemsPoC rootkit Curing evades traditional Linux detection systems

PoC rootkit Curing evades traditional Linux detection systems

Researchers created a PoC rootkit called Curing that uses Linux’s io_uring feature to evade traditional system call monitoring. Armo researchers…

2 months ago
Show more Posts
Show previous Posts