SecureWorld News

FEBRUARY 15, 2024

A sophisticated form of mobile malware dubbed "GoldPickaxe" has been uncovered, which collects facial recognition data to produce deepfake videos, enabling hackers to bypass biometric authentication protections on banking apps. The malware has been active since 2023, specifically targeting victims in Vietnam and Thailand.

Malware 76

Malware Authentication Mobile Engineering 76

Tech Republic Security

AUGUST 15, 2022

Malware downloading data logging and other espionage tools aimed at Ukrainian organizations. The post Russia’s Shuckworm cyber group launching ongoing attacks on Ukraine appeared first on TechRepublic.

Groups 138

Groups Malware Tools Data 138

TechSpot

NOVEMBER 11, 2022

Worok is using multi-stage malware designed to steal data and compromise high-profile victims, using steganography techniques to hide pieces of the final payload in a plain PNG image file. The novel malware was first discovered by ESET in September.

Malware 98

Malware Meeting Groups Data 98

TechSpot

JANUARY 29, 2023

The researchers identified the SwiftSlicer malware deployed during a cyberattack targeting Ukrainian technology outlets. The malware ware was written using a cross-platform language called Golang, better known as Go, and uses an Active Directory (AD) Group Policy attack vector.

Malware 131

Malware Research Policies Data 131

Tech Republic Security

APRIL 12, 2022

Kaspersky finds the new ransomware group on the block is writing malware to attack its victims. The post BlackCat targeting corporate world with new malware appeared first on TechRepublic.

Malware 121

Malware Groups Security 121

Computer Weekly

APRIL 20, 2017

Hotel group InterContinental (IHG) reveals that malware attempting to glean payment card details sat undetected on its network in the US for three months

Hotels 130

Hotels Malware Groups Network 130

Tech Republic Security

FEBRUARY 15, 2022

Dubbed TA2541 by Proofpoint researchers, the group has been attacking targets in several critical industries since 2017 with phishing emails and cloud-hosted malware droppers. The post Researchers discover common threat actor behind aviation and defense malware campaigns appeared first on TechRepublic.

Malware 137

Malware Research Groups Industry 137

Tech Republic Security

MAY 3, 2022

The state-supported group behind the SolarWinds supply chain attack is going after diplomats using spear phishing to deploy a novel strain of malware. The post Russian hacker group APT29 targeting diplomats appeared first on TechRepublic.

Groups 115

Groups Malware Security 115

Tech Republic

APRIL 20, 2023

As dwell times drop, and notifications of attack by third parties increase, organizations are getting better at defense while attackers evolve and malware proliferates. The post Malware is proliferating, but defenses are stronger: Mandiant appeared first on TechRepublic.

Malware 109

Malware Groups Google Software 109

TechSpot

AUGUST 31, 2022

This week, IT security group Checkpoint Research (CRP) published a report on its discovery of a crypto mining malware campaign hiding behind legitimate-looking apps, including Google Translate. The programs download malware while performing their advertised functions to gain users' trust.

Malware 114

Malware Google Advertising Programming 114

Tech Republic

SEPTEMBER 14, 2022

Lazarus, a North Korean cyberespionage group, keeps hitting energy providers in the U.S., Canada and Japan with a new malware arsenal. The post North Korean cyberespionage actor Lazarus targets energy providers with new malware appeared first on TechRepublic.

Malware 92

Malware Energy Groups Development 92

Tech Republic Security

OCTOBER 23, 2019

State-sponsored groups take advantage of the lack of effective mobile malware solutions to target mobile users, according to a new report from BlackBerry.

Malware 93

Malware Mobile Groups Report 93

CTOvision

DECEMBER 12, 2018

A cyber espionage group is deploying a new type of trojan malware against telecommunications, information technology, and government organisations.

Malware 182

Malware Telecommunications Groups Government 182

Computer Weekly

AUGUST 8, 2016

Symantec security researchers have uncovered a spying campaign by a previously unknown group using modular malware as stealthware

Malware 100

Malware Groups Symantec Research 100

SecureWorld News

AUGUST 8, 2022

Cybersecurity and Infrastructure Security Agency (CISA) and the Australian Cyber Security Centre (ACSC) released a joint Cybersecurity Advisory (CSA) providing details on the top malware strains of 2021. The top malware strains in 2021 included remote access Trojans (RATs), banking Trojans, information stealers, and ransomware.

Malware 86

Malware Banking Healthcare Spyware 86

TechSpot

OCTOBER 4, 2021

ZDNet writes that the group behind the notorious REvil ransomware—the same one used in attacks on Kaseya, Acer, and Apple manufacturing partner Quanta—leases the malware out to other criminals in exchange for a cut of the victims’ ransom.

Groups 130

Groups Malware Apple 130

SecureWorld News

FEBRUARY 3, 2023

The North Korean state-sponsored cybergang known as Lazarus Group has been identified as the force behind a new cyber espionage campaign that allowed the group to stealthily steal 100GB of data from victims. due to an error message found in a backdoor used by the group. The campaign was given the nickname "No Pineapple!"

Groups 86

Groups Malware Chemicals Energy 86

Computer Weekly

AUGUST 11, 2017

A Russian cyber espionage group is targeting hotel Wi-Fi networks to carry out malware infections and potentially steal credentials, researchers warn

Hotels 190

Hotels Groups Malware Research 190

The Verge

JULY 12, 2021

Microsoft says it’s gone door-to-door replacing routers compromised with the Trickbot malware in Brazil and Latin America, hoping to squash an international hacking group. The group uses compromised computers as a massive botnet and runs ransomware attacks and other illegal operations. Illustration by Alex Castro / The Verge.

Malware 116

Malware Microsoft Internet Groups 116

SecureWorld News

APRIL 21, 2023

ESET researchers have discovered a new Lazarus Group campaign targeting Linux users. According to a recent blog post : "Operation DreamJob is the name for a series of campaigns where the group uses social engineering techniques to compromise its targets, with fake job offers as the lure.

Malware 72

Malware Linux .Net System 72

SecureWorld News

FEBRUARY 14, 2023

Cybersecurity firm Group-IB successfully defended against a targeted attack by the Chinese state-sponsored Tonto Team, one of the world's most advanced persistent threat (APT) actors. According to a blog post by Group-IB , the company detected and blocked malicious phishing emails originating from Tonto Team that were targeting its employees.

Groups 98

Groups Comparison Malware Tools 98

SecureWorld News

FEBRUARY 20, 2023

Web hosting provider GoDaddy has revealed it suffered a security breach that lasted for several years, resulting in the installation of malware on its servers and the theft of source code related to some of its services. The company has attributed the campaign to a "sophisticated and organized group targeting hosting services."

Malware 91

Malware Report Authentication Analysis 91

IT Toolbox

SEPTEMBER 9, 2022

North Korean Lazarus group is targeting critical infrastructure through existing Log4j vulnerabilities and newly developed MagicRAT malware. The post Lazarus Hackers Exploiting Log4j Vulnerabilities to Target U.S. Energy Companies appeared first on Spiceworks.

Energy 246

Energy Company Malware Groups 246

Tech Republic Security

OCTOBER 25, 2022

As ransomware attacks continued this year, a few key groups inflicted some of the greatest damage to their victims. The post The most dangerous and destructive ransomware groups of 2022 appeared first on TechRepublic.

Groups 148

Groups Malware Security 148

SecureWorld News

APRIL 14, 2023

The Lazarus Group, a North Korean cybercriminal organization known for its cyber espionage and financially motivated attacks, has been observed shifting targets and refining techniques in their campaign dubbed "DeathNote," according to a recent report by cybersecurity firm Kaspersky.

Groups 79

Groups Automotive Open Source Malware 79

SecureWorld News

OCTOBER 21, 2022

A new version of the Android malware "FurBall" has been discovered to be used by the threat actor(s) known as Domestic Kitten in a campaign targeting Iranian citizens in a mobile surveillance operation. Though it has the Google Play logo, the app is not available in the Google Play store and downloads directly from Domestic Kitten's server.

Malware 80

Malware Spyware Government Research 80

Tech Republic Security

SEPTEMBER 24, 2022

Dubbed Coreid, the group has adopted a new version of its data exfiltration tool and is offering more advanced capabilities to profitable affiliates, says Symantec. The post Colonial Pipeline ransomware group using new tactics to become more dangerous appeared first on TechRepublic.

Groups 143

Groups Symantec Tools Data 143

The Verge

JUNE 5, 2021

The US Department of Justice has charged a Latvian woman for her role in allegedly developing the Trickbot malware, which was responsible for infecting millions of computers, targeting schools, hospitals, public utilities, and governments, the agency said in a news release. and foreign beneficiary accounts,” the DOJ said.

Malware 84

Malware Development Banking Healthcare 84

Gizmodo

APRIL 5, 2022

NSO Group, the creepy spyware firm known for selling its services to authoritarian governments throughout the world, is in trouble again. A new report shows that the company’s most notorious malware, Pegasus, was used to hack the iPhone of a Jordanian journalist in December. The hack occurred several weeks after… Read more.

Spyware 60

Spyware Groups Malware Apple 60

Tech Republic Security

APRIL 8, 2020

IntSights researchers surveyed the cyberthreat landscape, finding a wide variety of coronavirus-themed phishing lures, malware infections, network intrusions, scams, and disinformation campaigns.

Groups 160

Groups Malware Survey Research 160

Gizmodo

AUGUST 24, 2021

The iPhones of nine Bahraini political activists were recently hacked using the NSO Group’s spyware Pegasus, according to a new report put out by researchers. Read more.

Spyware 67

Spyware Malware Groups Research 67

SecureWorld News

JANUARY 19, 2021

It has recently been discovered that another strain of malware, Raindrop, was used in the attack. This will likely result in more malware strains being discovered and reported as more of the scope of the attack is revealed.". More information continues to come out around the serious SolarWinds data breach.

Malware 75

Malware Symantec Analysis Tools 75

Tech Republic Security

SEPTEMBER 27, 2021

Commercially-available malware, with minimal modification, is behind attacks against the Indian government, says Cisco's Talos security research group.

Government 217

Government Malware Network Groups 217

Network World

MARCH 17, 2017

Several attacks observed over the past few months that rely heavily on PowerShell, open-source tools, and fileless malware techniques might be the work of a single group of hackers. To read this article in full or to leave a comment, please click here

Malware 60

Malware Groups Open Source Research 60

TechSpot

MARCH 10, 2023

The unknown actors behind the campaign are likely Chinese and working to benefit the Communist dictatorship, the analysts say, and the group is currently tracked as UNC4540. Security researchers at Mandiant have uncovered a new malicious campaign against network appliances sold by SonicWall. Read Entire Article

Malware 113

Malware Groups Research Network 113

Tech Republic Security

FEBRUARY 15, 2017

A newly detected malware targeting macOS devices can steal passwords and capture iPhone backups. And it's coming from the same group believed to be responsible for the 2016 election hacks.

Malware 134

Malware Backup Apple Groups 134

SecureWorld News

OCTOBER 25, 2022

The Iranian Atomic Energy Organization (AEOI) recently announced that one of its subsidiaries' email servers were breached by the hacktivist group "Black Reward," which published the stolen data on the Dark Web. But it's not just hacktivists utilizing cybersecurity tools.

Energy 67

Energy Groups Malware Government 67