Cybersecurity News - Page 392

The hackers have ditched the previous PowerShell-based backdoor in favor of an even stealthier malware.

At the moment it is unclear how exactly Lilocked’s operators infect their victims.

It appears that the APT3 has acquired the tool by analyzing network traffic on a system that was potentially targeted by the NSA.

A new attack can be used by malicious actors to intercept all email or web traffic to and from Android phones using specially-crafted bogus SMS messages.

The use of hacked SharePoint accounts allows the attackers to circumvent just about any email perimeter technology.

Hackers use Cloudflare Workers to have a resilient, efficient and secure network to spread payloads.

Hackers exploit flaws in more than ten WordPress plugins to inject backdoor into vulnerable sites.

The group actively targets multinational organizations luring the employees with spear phishing emails into downloading More_eggs JScript backdoor.

All observed campaigns are using several unique tactics, techniques, and procedures (TTPs).

To gain initial access to organization’s systems the group uses account credentials obtained via technique known as password spraying or brute-force attacks.