A North Korea-linked APT group has been spotted targeting cryptocurrency startups worldwide with fake MetaMask browser extensions to steal cryptocurrency from users' wallets. The attackers work around a complex infrastructure, including various exploits and malware implants to target victims. Organ ... Read More

A new report suggests that North Korean hackers mooched off at least $400 million in cryptocurrencies through cyberattacks in 2021, which is a whopping 40% increase as compared to the last year. Hackers use a systematic money laundering process that involves multiple software tools to collect ... Read More

While the ever-evolving technological landscape has connected the IT and OT sides of the business, it has also left ICS networks exposed to threats impacting IT systems.

A report shared by Crowdstrike recently highlights the rising threats on Linux-based operating systems. Researchers noted that there has been a 35% rise in Linux-based malware in 2021 as compared to 2020.

Experts claim that OceanLotus's campaign is actively using web archive files in its attacks that involves web archive file laden with a malicious Word doc.  The malware collects different information, such as network adapter, a list of system directories and files, username, computer name, and ... Read More

Cisco Talos unearthed a new malware campaign involving variants of three RATs, namely NetWire, Nanocore, and AsyncRAT, spreading via public cloud infrastructure. The attackers have used complex code and secured malware using several layers of obfuscation. The campaign targets entities based in coun ... Read More

A major crackdown on cybercriminals in Russia as authorities arrested members of the REvil group, infamous for a supply chain attack against Kaseya, and a ransomware attack against JBS Foods. Police arrested 14 alleged members of the group by raiding at 25 addresses in Moscow, St. Petersburg, and s ... Read More

eSentire analysts found GootLoader operators attacking three law firms and one accounting firm and downloading malicious business agreements and other documents. One of the hacker's malicious website was found hosting 150 rogue pages for users searching for intellectual property and postnuptial agr ... Read More

The CISA added 15 vulnerabilities to its Known Exploited Vulnerabilities Catalog, three of which need to be remediated by federal civilian agencies before January 24. The list contains known vulnerabilities in multiple products from various vendors, including Oracle, Hikvision, FatPipe, VMware ... Read More

Fortinet discovered a new RedLine info-stealer campaign impersonating the COVID-19 Omicron stat counter app as a lure to steal data. The victims of the attack campaign are reportedly distributed across 12 countries. Security teams are advised to deploy a reliable anti-malware solution, encrypt impo ... Read More