DPRK-linked BlueNoroff used macOS malware with novel persistence

SentinelLabs observed North Korea-linked threat actor BlueNoroff targeting businesses in the crypto industry with a new multi-stage malware. SentinelLabs researchers identified a North Korea-linked threat actor targeting crypto businesses with new macOS malware as part of a campaign tracked as “Hidden Risk.” The attackers, linked to BlueNoroff and past RustBucket campaigns, used fake cryptocurrency news emails […]

North Korean hackers use new macOS malware against crypto firms

bleepingcomputer.com - 07/Nov 22:15

North Korean threat actor BlueNoroff has been targeting crypto-related businesses with a new multi-stage malware for macOS systems. [...]

North Korean hackers employ new tactics to compromise crypto-related businesses

itsecuritynews.info - 07/Nov 12:09

North Korean hackers are targeting crypto-related businesses with phishing emails and novel macOS-specific malware. The crypto-related phishing...

Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide

securityaffairs.co - 02/Nov 16:12

Sophos used custom implants to monitor China-linked thret actors targeting firewall zero-days in a years-long battle. Sophos revealed a years-long...

Frag Ransomware Dissection

thecyberthrone.in - 16:16

A new ransomware strain named Frag ransomware has been discovered during the series of cyberattacks involving exploiting a vulnerability in Veeam...

Russia-linked espionage group UNC5812 targets Ukraine’s military with malware

securityaffairs.co - 29/Oct 07:48

Suspected Russia-linked espionage group UNC5812 targets Ukraine’s military with Windows and Android malware via Telegram. Google TAG and...

Fintech users under threat from malicious Telegram campaign

it-online.co.za - 01/Nov 07:59

Kaspersky’s Global Research and Analysis team (GReAT) has uncovered a malicious global campaign in which attackers used Telegram to deliver Trojan...

Threat Actors Hijack Windows Systems Using the New SteelFox Malware

itsecuritynews.info - 08/Nov 15:11

A new malware named ‘SteelFox’ is actively used by threat actors to mine cryptocurrency and steal credit card data. The malware leverages the...

LightSpy iOS Malware Enhanced with 28 New Destructive Plugins

itsecuritynews.info - 01/Nov 09:40

The LightSpy threat actor exploited publicly available vulnerabilities and jailbreak kits to compromise iOS devices. The malware’s core binaries...

Chinese threat actor Storm-0940 uses credentials from password spray attacks from a covert network

itsecuritynews.info - 01/Nov 15:34

Since August 2023, Microsoft has observed intrusion activity targeting and successfully stealing credentials from multiple Microsoft customers that is...

ToxicPanda Android banking trojan targets Europe and LATAM, with a focus on Italy

securityaffairs.co - 05/Nov 21:25

The ToxicPanda Android malware has infected over 1,500 devices, enabling attackers to perform fraudulent banking transactions. Cleafy researchers...

Rubriques :