Cyware Alerts - Hacker News

Operation Layover by Nigerian Threat Actor Targets Aviation Sector

Operation Layover by Nigerian Threat Actor Targets Aviation Sector - Cyware Alerts - Hacker News
Cisco Talos uncovered a three-year-long espionage campaign, dubbed Operation Layover, aimed at the airline industry. Cybercriminals are spreading AsyncRAT and njRAT via malicious documents. In the ongoing campaign, attackers can change their crypter/attack vector and continue stealing from victims ... Read More

Ransomware Emerges as Primary Threat

Ransomware Emerges as Primary Threat - Cyware Alerts - Hacker News
According to Trend Micro, the first half of the year witnessed over 7.3 million ransomware threats. The banking industry experienced a 1,318% year-over-year increase in ransomware attacks.

The New ZLoader Variant Targets Banking Customers

The New ZLoader Variant Targets Banking Customers - Cyware Alerts - Hacker News
SentinelLabs reported a campaign delivering the ZLoader banking trojan via fake Google advertisements for various software, including Discord, Zoom, TeamViewer, and Java plugins. I t uses Living-off-the-Land Binaries and Scripts (LOLBAS) to avoid detection. This campaign manifests that ZLoader ope ... Read More

Telegram Becomes the New Dark Web, Here’s What Cybercriminals are Selling

Telegram Becomes the New Dark Web, Here’s What Cybercriminals are Selling - Cyware Alerts - Hacker News
Cybercrime trade on Telegram is exploding as cybercriminals take to the popular instant messaging app to buy, sell, and share stolen data and hacking tools.

Mustang Panda Using PlugX to Target Indonesian Government

Mustang Panda Using PlugX to Target Indonesian Government - Cyware Alerts - Hacker News
Researchers from Insikt Group discovered the attacks in April. They observed a PlugX malware C2 server (operated by Mustang Panda) communicating with systems hosted inside the networks of government agencies in Indonesia. Indonesia’s national intelligence agency BIN denied the claim that its server ... Read More

New Banking Trojan Abuses Public Platforms Including YouTube

New Banking Trojan Abuses Public Platforms Including YouTube - Cyware Alerts - Hacker News
ESET reported a new Numando banking Trojan that abuses YouTube, Pastebin, and other public platforms to fool victims into stealing their financial credentials. It can simulate mouse clicks, keyboard actions, hijack PC’s shutdown/restart functions, kill browser processes, and take screenshots. Banki ... Read More

Mirai Exploits OMIGOD Flaws in the Wild

Mirai Exploits OMIGOD Flaws in the Wild - Cyware Alerts - Hacker News
Azure customers are requested to urgently address the OMIGOD flaw exploited by Mirai botnet operators. Microsoft has released additional guidance on securing Linux machines impacted by the critical flaw that concerns thousands of Azure customers and millions of endpoints. Due to no auto-update mech ... Read More

New Warning: APTs are Targeting Zoho ManageEngine

New Warning: APTs are Targeting Zoho ManageEngine - Cyware Alerts - Hacker News
The FBI, CISA, and CGCYBER issued a joint advisory warning against the exploitation of a critical bug in the Zoho ManageEngine ADSelfService Plus software by the nation-state actors. Besides applying a patch, organizations are suggested to baseline the normal behavior in web server logs to spot a w ... Read More

Capoae Uses Known Tricks to Target Linux and Windows

Capoae Uses Known Tricks to Target Linux and Windows - Cyware Alerts - Hacker News
New Capoae malware strain is reportedly targeting WordPress and Linux systems worldwide. Written in GoLang, it exploited around four different RCE vulnerabilities. Moreover, the malware contains a port scanner to find open ports and services for further exploitation. Among other advice, experts r ... Read More

Supply Chain Attacks via Open-Source Repositories Spike

Supply Chain Attacks via Open-Source Repositories Spike - Cyware Alerts - Hacker News
A report from Sonatype revealed that supply chain attacks on open-source public repositories have increased up to 650% year-over-year. The security firm has mentioned that the significant increase in supply-chain attacks has been mainly caused by the exploitation of flaws in popular open-source ec ... Read More

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags