Evasive QBot Malware Leverages Short-lived Residential IPs for Dynamic AttacksNew!!
An analysis of the "evasive and tenacious" malware known as QBot has revealed that 25% of its command-and-control (C2) servers are merely active for a single day.
What's more, 50% of the...
New Zero-Click Hack Targets iOS Users with Stealthy Root-Privilege MalwareNew!!
A previously unknown advanced persistent threat (APT) is targeting iOS devices as part of a sophisticated and long-running mobile campaign dubbed Operation Triangulation that began in 2019. "The targets are infected using zero-click...
Improved BlackCat Ransomware Strikes with Lightning Speed and Stealthy TacticsNew!!
The threat actors behind BlackCat ransomware have come up with an improved variant that prioritizes speed and stealth in an attempt to bypass security guardrails and achieve their goals.
The new version,...
N. Korean ScarCruft Hackers Exploit LNK Files to Spread RokRATNew!!
Cybersecurity researchers have offered a closer look at the RokRAT remote access trojan that's employed by the North Korean state-sponsored actor known as ScarCruft. "RokRAT is a sophisticated remote access trojan (RAT)...
Cybercriminals Targeting Apache NiFi Instances for Cryptocurrency MiningNew!!
A financially motivated threat actor is actively scouring the internet for unprotected Apache NiFi instances to covertly install a cryptocurrency miner and facilitate lateral movement.
The findings come from the SANS Internet Storm Center...
Critical Firmware Vulnerability in Gigabyte Systems Exposes ~7 Million DevicesNew!!
Cybersecurity researchers have found "backdoor-like behavior" within Gigabyte systems, which they say enables the UEFI firmware of the devices to drop a Windows executable and retrieve updates in an unsecure format.
Firmware security firm...
5 free OSINT tools for social mediaNew!!
A roundup of some of the handiest tools for the collection and analysis of publicly available data from Twitter, Facebook and other social media platforms The post 5 free OSINT tools for social media appeared first on WeLiveSecurity
Dark Pink APT Group Leverages TelePowerBot and KamiKakaBot in Sophisticated AttacksNew!!
The threat actor known as Dark Pink has been linked to five new attacks aimed at various entities in Belgium, Brunei, Indonesia, Thailand, and Vietnam between February 2022 and April 2023.
This includes educational...
RomCom RAT Using Deceptive Web of Rogue Software Sites for Covert AttacksNew!!
The threat actors behind RomCom RAT are leveraging a network of fake websites advertising rogue versions of popular software at least since July 2022 to infiltrate targets.
Cybersecurity firm Trend Micro is tracking the...
Hackers Win $105,000 for Reporting Critical Security Flaws in Sonos One SpeakersNew!!
Multiple security flaws uncovered in Sonos One wireless speakers could be potentially exploited to achieve information disclosure and remote code execution, the Zero Day Initiative (ZDI) said in a report published last week.
The...