backdoor

Language properties allow you to integrate into the system and feel at home. The new phishing campaign uses decoy documents in Word format to deliver malware written in the Nim programming language. Netskope emphasizes that malware written in non-standard languages creates difficulties for...

Microsoft warned about the growth of spyware attacks and gave recommendations on how to protect confidential data. Microsoft Corporation announced that the Iranian cyber espionage group APT33 (Peach Sandstorm, HOLMIUM, Refined Kitten) uses a new type of malware called FalseFont to attack...

Chinese hackers and their role in increasing global digital risks. A new report jointly prepared by SentinelOne, PwC and the Microsoft Threat Intelligence team reveals the tactical and targeted intersections between the mysterious APT group Sandman and cybercriminals from China who use a...

APT-C-28 has upgraded its tools, making it even harder to protect valuable data. Security experts from the 360 Threat Intelligence Center recently identified a new wave of attacks by the North Korean group APT-C-28, also known as ScarCruft and APT37. These attacks targeted government agencies...

The story of how a single email reveals your entire digital life to spies. IBM X-Force has identified a new malware downloader called WailingCrab (WikiLoader). First documented in August 2023, the virus was used to attack Italian organizations in order to deploy the Ursnif trojan. The TA544...

From phishing to password theft: how the attacks on Russian institutions took place. Russian institutions from the state and industrial sectors have become victims of a massive cyberattack detected by Kaspersky Lab . Attackers used phishing emails with a malicious archive attached, which...

The DoNot Team has returned to cyberspace with new tools. Kaspersky Lab specialists have revealed the activity of the DoNot Team group. In particular, the use of a new backdoor on the database was revealed .NET called Firebird, which affected only a small number of victims in Pakistan and...

Kaspersky Lab researchers report an updated version of the MATA backdoor, which was discovered during attacks between August 2022 and May 2023 targeting oil and gas companies and the defense industry in Eastern Europe. During the campaign, targeted phishing emails were used to force victims to...

Cheap set-top boxes are a tool for cybercriminals. Thousands of owners of cheap Android TV devices are facing an unexpected threat. When buying a set-top box for streaming TV, no one expects that it will be infected with malicious software or start communicating with servers in China when...

The management of the aerospace company hardly praised the man for the mistake made. North Korean hacker group Lazarus used fake jobs to break into the corporate network of an unnamed aerospace company in Spain, using a previously undocumented backdoor called LightlessCan in the attack. As...

Research by Positive Technologies reveals a new threat to the Russian defense complex. A new group-the operator of a dangerous military-industrial complex, which researchers called Dark River, purposefully attacks enterprises of the Russian defense complex, investing serious financial and...

Are you ready for more revelations from Snowden? Cavium, a semiconductor manufacturer acquired by Marvell in 2018, was allegedly identified in documents leaked in 2013 by Edward Snowden as a supplier of semiconductors with backdoors for US intelligence. Marvell denies that it or Cavium...

NCC Group warns that even patches may not save you. Cybersecurity company NCC Group said in a report that nearly 2,000 Citrix NetScaler instances were compromised. Attackers exploited the recently discovered critical vulnerability CVE-2023-3519. Presumably, it was useful for installing web...