Russian Malware

A nascent information-stealing malware offered and distributed on underground Russian underground boards has been written in Rust, signalling a brand new pattern the place risk actors are more and more adopting exotic programming languages to bypass safety protections, evade evaluation, and hamper reverse engineering efforts. Dubbed “Ficker Stealer,” it is notable for being propagated by […]

A Chinese language cyber espionage group has been linked to a string of intrusion actions concentrating on Israeli authorities establishments, IT suppliers, and telecommunications corporations not less than since 2019. FireEye’s Mandiant risk intelligence arm attributed the marketing campaign to an operator it tracks as “UNC215”, a Chinese language espionage operation that is believed to […]

WellMess Malware

Cybersecurity researchers on Friday unmasked new command-and-control (C2) infrastructure belonging to the Russian risk actor tracked as APT29, aka Cozy Bear, that has been noticed actively serving WellMess malware as a part of an ongoing assault marketing campaign. Greater than 30 C2 servers operated by the Russian overseas intelligence have been uncovered, Microsoft-owned cybersecurity subsidiary […]


An ongoing cyber-espionage operation with suspected ties to China has been discovered concentrating on a Southeast Asian authorities to deploy adware on Home windows methods whereas staying underneath the radar for greater than three years. “On this marketing campaign, the attackers utilized the set of Microsoft Workplace exploits and loaders with anti-analysis and anti-debugging methods […]

Cybersecurity researchers have uncovered an ongoing malware marketing campaign that closely depends on AutoHotkey (AHK) scripting language to ship a number of distant entry trojans (RAT) akin to Revenge RAT, LimeRAT, AsyncRAT, Houdini, and Vjw0rm on track Home windows methods. At the least 4 completely different variations of the marketing campaign have been noticed beginning […]

Cybersecurity researchers on Monday disclosed a brand new Android trojan that hijacks customers’ credentials and SMS messages to facilitate fraudulent actions towards banks in Spain, Germany, Italy, Belgium, and the Netherlands. Referred to as “TeaBot” (or Anatsa), the malware is alleged to be in its early levels of improvement, with malicious assaults focusing on monetary […]