New Android Spyware Variants Linked to Middle Eastern APT
New variants of Android spyware linked to a Middle Eastern advanced persistent threat (APT) group have been designed to be stealthier and more persistent, Sophos researchers reported today.This malware...
RatMilad Spyware Scurries onto Enterprise Android Phones
Attackers have been using a new spyware against enterprise Android devices, dubbed RatMilad and disguised as a helpful app to get around some countries' Internet restrictions.
For now, the campaign...
Release the Kraken: Fileless injection into Windows Error Reporting service
We discovered a new attack that injected its payload—dubbed "Kraken—into the Windows Error Reporting (WER) service as a defense evasion mechanism.
This blog post was authored by Hossein Jazi...
Automated Cybercampaign Creates Masses of Bogus Software Building Blocks
An automated attack within the NuGet open source ecosystem for .NET developers has resulted in a flood of malicious packages containing links to phishing campaigns.
That's according to a joint...
Former Conti Ransomware Members Join Initial Access Broker Group Targeting Ukraine
Former members of the Russia-linked Conti ransomware gang are repurposing their tactics to join in with an initial access broker (IAB) that's been targeting Ukraine in a series of...
Top Hardware Weaknesses List Debuts
The Cybersecurity and Infrastructure Security Agency (CISA) today announced the first-ever 2021 Common Weakness Enumeration (CWE) Most Important Hardware Weaknesses List of common and especially serious mistakes in hardware that...
