DBatLoader Actively Distributing Malware Targeting European Businesses

The campaign targets manufacturing companies and multiple businesses in European countries through phishing emails. The malicious payload is distributed through WordPress sites with authorized SSL certificates.

Three New Variants — Standard, Lite and Forked — of IcedID Malware Discovered

Security researchers at Proofpoint described the malware samples in an advisory published on Monday, which names them Standard, Lite, and Forked IcedID variants respectively.

NullMixer Includes Polymorphic Loaders to Deliver New Threats

The NullMixer package is including new polymorphic loaders by third-party MaaS and PPI service providers in the underground markets, and also pieces of controversial, potentially North-Korean-linked PseudoManuscript code.

BlackGuard Stealer Enhances its Stealth, Persistence Technique, and Scope

BlackGuard Stealer Enhances its Stealth, Persistence Technique, and Scope - Cybersecurity news - Malware and Vulnerabilities
BlackGuard, which was first spotted in March 2022, has experienced an upgrade with several new capabilities. It added a crypto wallet hijacker module that has hardcoded addresses and support for multiple cryptocurrencies. The stealer can now propagate via USB and other removable devices to infect n ... Read More

Outlook Zero-Day Needs Quick Patching : Microsoft

Outlook Zero-Day Needs Quick Patching : Microsoft - Cybersecurity news - Malware and Vulnerabilities
A Microsoft Outlook bug has been discovered jeopardizing the security of the Microsoft 365 suite. Tagged as CVE-2023-23397, the bug enables a threat actor to access user credentials by passing along a specially crafted email package. It reportedly features a high ‘wormability’ factor with no user i ... Read More

New MacStealer macOS Malware Steals iCloud Keychain Data and Passwords

Dubbed MacStealer, it's the latest example of a threat that uses Telegram as a command-and-control (C2) platform to exfiltrate data. It primarily affects devices running macOS versions Catalina and later running on M1 and M2 CPUs.

Dark Power Ransomware Operation Claims 10 Victims in a Month

Dark Power Ransomware Operation Claims 10 Victims in a Month - Cybersecurity news - Malware and Vulnerabilities
A new ransomware operation by the Dark Power group was spotted in the wild by cybersecurity firm Trellix. It gives victims a total of 72 hours to send $10,000 in Monero cryptocurrency to receive a working decryptor. To experts, it appears to be a private project since this operation has no traces o ... Read More

Apple Issues Urgent Security Update for Older iOS and iPadOS Models

The update is available in versions iOS 15.7.4 and iPadOS 15.7.4 for iPhone 6s (all models), iPhone 7 (all models), iPhone SE (1st generation), iPad Air 2, iPad mini (4th generation), and iPod touch (7th generation).

Microsoft shares guidance for investigating attacks exploiting CVE-2023-23397

Microsoft published guidance for investigating attacks exploiting recently patched Outlook vulnerability tracked as CVE-2023-23397. The flaw is a Microsoft Outlook spoofing vulnerability that can lead to an authentication bypass.

Pwn2Own Vancouver 2023 awarded $1,035,000 and a Tesla for 27 0-days

On the third day, contestants were awarded $185,000 after demonstrating 5 zero-day exploits targeting the Ubuntu Desktop, Windows 11, and the VMware Workstation software.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags