#remote-access-trojans

[ follow ]
#cybersecurity #malware #social-engineering #phishing #supply-chain-security #open-source #cryptocurrency-mining
Information security
fromTechzine Global
2 hours ago

Axios supply chain attack victim posts postmortem to prevent a repeat

Axios was compromised for three hours, distributing Remote Access Trojans due to a sophisticated social engineering attack by North Korean group UNC1069.
Information security
fromThe Hacker News
23 hours ago

Researchers Uncover Mining Operation Using ISO Lures to Spread RATs and Crypto Miners

Operation REF1695 uses fake installers to deploy RATs and cryptocurrency miners, monetizing infections through CPA fraud since November 2023.
Information security
fromThe Hacker News
3 weeks ago

Multi-Stage VOID#GEIST Malware Delivering XWorm, AsyncRAT, and Xeno RAT

A multi-stage malware campaign called VOID#GEIST uses obfuscated batch scripts to deliver encrypted RAT payloads including XWorm, AsyncRAT, and Xeno RAT through fileless execution techniques.
Information security
fromThe Hacker News
1 month ago

Fake Tech Support Spam Deploys Customized Havoc C2 Across Organizations

Threat actors impersonate IT support via email and phone calls to deliver Havoc C2 framework for data exfiltration or ransomware attacks across multiple organizations.
fromThe Hacker News
4 months ago

CISA Warns of Active Spyware Campaigns Hijacking High-Value Signal and WhatsApp Users

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday issued an alert warning of bad actors actively leveraging commercial spyware and remote access trojans (RATs) to target users of mobile messaging applications. "These cyber actors use sophisticated targeting and social engineering techniques to deliver spyware and gain unauthorized access to a victim's messaging app, facilitating the deployment of additional malicious payloads that can further compromise the victim's mobile device," the agency said.
Information security
fromTechRepublic
7 months ago

Windows Users: Global UpCrypter Phishing Attack is Expanding

The phishing emails arrive disguised as missed voicemails or purchase orders. Victims who click on the attachments are redirected to fake websites, designed to appear convincing, often featuring company logos to increase trust. According to Fortinet, these phishing pages prompt users to download a ZIP file containing a heavily disguised JavaScript dropper. Once opened, the script triggers PowerShell commands in the background that connect to attacker-controlled servers for the next stage of malware.
Information security
Information security
fromThe Hacker News
7 months ago

Blind Eagle's Five Clusters Target Colombia Using RATs, Phishing Lures, and Dynamic DNS Infra

Blind Eagle conducted espionage and financially motivated intrusions targeting Colombian government and regional organizations using RATs, spear-phishing, legitimate services, and geofencing.
#cybersecurity
London startup
fromTheregister
11 months ago

Chinese spies backdoored US orgs via open source RAT

A Chinese cyberspy group is using an advanced malware that offers remote access and increased stealth for espionage purposes.
London startup
fromTheregister
11 months ago

Chinese spies backdoored US orgs via open source RAT

A Chinese cyberspy group is using an advanced malware that offers remote access and increased stealth for espionage purposes.
more#cybersecurity
[ Load more ]