Cyware Alerts - Hacker News

TA551 Now Spreading IcedID Stealer via Spoofed Emails

TA551 Now Spreading IcedID Stealer via Spoofed Emails - Cyware Alerts - Hacker News
Cybercriminal group TA551 was found hijacking an ongoing email conversation to spread information-stealing malware such as Ursnif, Valak, and IcedID, Palo Alto Networks revealed.

xHunt Campaign Adopts New Enhancements to Evade Detection

xHunt Campaign Adopts New Enhancements to Evade Detection - Cyware Alerts - Hacker News
A sophisticated group is using a webshell called BumbleBee in an ongoing xHunt campaign targeting Microsoft Exchange servers at Kuwaiti organizations.

Trojans Roar Back to Prominence in 2021

Trojans Roar Back to Prominence in 2021 - Cyware Alerts - Hacker News
The cyber landscape has recently encountered many new variants of trojans. Since many trojans are now offered for sale or rent on dark web forums, it enables such attack campaigns to grow rapidly.

When the Linux Environment Comes Under Cyberattack

When the Linux Environment Comes Under Cyberattack - Cyware Alerts - Hacker News
Researchers have pointed out that several cyber gangs have started targeting Linux machines via a fileless malware installation technique that was more commonly used against Windows-based systems.

Cybercriminals Level-up Their Tricks to Ensnare More Victims

Cybercriminals Level-up Their Tricks to Ensnare More Victims - Cyware Alerts - Hacker News
The year 2020 was characterized by chaotic change, and unfortunately, cybersecurity threats were a part of that as many organizations everywhere faced a constantly shifting set of risks.

What are Chinese APT Groups Up to?

What are Chinese APT Groups Up to? - Cyware Alerts - Hacker News
In the wake of several recent attacks, the adoption of ransomware tactics points to the fact that these APT groups are aiming for financial gains as these attacks don’t count as espionage targets.

Lokibot Stealer Comes with Added Features to Hide Better While Attacking Targets

Lokibot Stealer Comes with Added Features to Hide Better While Attacking Targets - Cyware Alerts - Hacker News
The developers of one of the infamous information-stealers in the malware landscape have added a third stage to its process of compromising systems, along with more encryption, as a way to escape detection. 

Top Penetration Testing Toolkits Abused by Cybercriminals

Top Penetration Testing Toolkits Abused by Cybercriminals - Cyware Alerts - Hacker News
A security firm tracked tens and thousands of malware C&C servers used across over 80 malware families; more than a quarter of all the servers used Cobalt Strike and Metasploit.

Egregor on an Attacking Spree Around the World

Egregor on an Attacking Spree Around the World - Cyware Alerts - Hacker News
A recent FBI advisory urges all private sector organizations to be on the alert for potential malicious activities from the threat actors behind Egregor ransomware.

TeamTNT Botnet Further Evolves with Environment Setup Capabilities

TeamTNT Botnet Further Evolves with Environment Setup Capabilities - Cyware Alerts - Hacker News
Researchers have linked recent TeamTNT botnet activity to extraction and stealing of Docker and AWS credentials. Previously, it would mine cryptocurrency only on misconfigured container platforms.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags