Kimsuki hackers use commodity RATs with custom Gold Dragon malware
South Korean researchers have spotted a new wave of activity from the Kimsuky hacking group, involving commodity open-source remote access…
Qbot needs only 30 minutes to steal your credentials, emails
The widespread malware known as Qbot (aka Qakbot or QuakBot) has recently returned to light-speed attacks, and according to analysts,…
A look at the new Sugar ransomware demanding low ransoms
A new Sugar Ransomware operation actively targets individual computers, rather than corporate networks, with low ransom demands. [...]
Malicious CSV text files used to install BazarBackdoor malware
A new phishing campaign is using specially crafted CSV text files to infect users' devices with the BazarBackdoor malware. [...]
MuddyWater hacking group targets Turkey in new campaign
The Iranian-backed MuddyWater hacking group is conducting a new malicious campaign targeting private Turkish organizations and governmental institutions. [...]
Threat Actors Use Microsoft OneDrive for Command-and-Control in Attack Campaign
Signs hint at Russia's APT28, aka Fancy Bear, being behind the attacks, according to new research.
US links MuddyWater hacking group to Iranian intelligence agency
US Cyber Command (USCYBERCOM) has officially linked the Iranian-backed MuddyWatter hacking group to Iran's Ministry of Intelligence and Security (MOIS).…
Magniber ransomware using signed APPX files to infect systems
The Magniber ransomware has been spotted using Windows application package files (.APPX) signed with valid certificates to drop malware pretending…
Hackers take over diplomat’s email, target Russian deputy minister
Hackers believed to work for the North Korean government have compromised the email account of a staff member of Russia's…
Night Sky is the latest ransomware targeting corporate networks
It's a new year, and with it comes a new ransomware to keep an eye on called 'Night Sky' that…