Chinese Gallium APT uses previously undocumented remote access trojan PingPull
One of the PingPull variants uses ICMP which makes it difficult to detect its command-and-control communications.
Cybersecurity News - Page 263
HelloXD ransomware installs a backdoor to monitor breached systems
The researchers were able to trace the threat to a Russian-speaking threat actor.
Recently patched Atlassian Confluence bug exploited to install ransomware, cryptominers
AvosLocker and Cerber2021 ransomware gangs have begun to target vulnerable internet-exposed Atlassian Confluence servers.
Iranian cyber snoops attack energy sector with new DNS backdoor
Using a customized version of the DIG.net open-source tool the backdoor carries out "DNS hijacking" attacks, executes commands, drops payloads, and steals data.
Ukraine’s CERT warns of a phishing campaign delivering CrescentImp malware
This is yet another malicious campaign that exploits the Follina vulnerability.
Vice Society ransomware gang behind the attack on Italian city of Palermo
Vice Society posted an announcement on their dark net leak site threatening to release all stolen files if the requested ransom is not paid.
Emotet botnet infects victims' systems with a new credit card stealer
The new module sends the collected data to a different remote command-and-control server.
Researchers detail new, “nearly-impossible-to-detect ” Linux malware
The malware provides its operator with rootkit functionality, the ability to harvest credentials, and remote access capability.
Previously unknown Chinese hacker group quietly spied on organizations for 10 years
The group’s attacks typically drop one of two backdoors, Mongall and a modified version of the open source Heyoka project.
Facebook Messenger scammers make millions of dollars in revenue
Millions of users have become victims of scammers, who lured them to visit phishing pages, enter their account credentials and view advertisements.
Showing elements 2621 - 2630