Lucene search
K

7 matches found

The Hacker News
The Hacker News
added 2022/02/18 11:57 a.m.18 views

PseudoManuscrypt Malware Spreading the Same Way as CryptBot Targets Koreans

Numerous Windows machines located in South Korea have been targeted by a botnet tracked as PseudoManuscrypt since at least May 2021 by employing the same delivery tactics of another malware called CryptBot. "PseudoManuscrypt is disguised as an installer that is similar to a form of CryptBot, and ...

2.4AI score
Exploits0
The Hacker News
The Hacker News
added 2021/07/28 10:58 a.m.54 views

Chinese Hackers Implant PlugX Variant on Compromised MS Exchange Servers

A Chinese cyberespionage group known for targeting Southeast Asia leveraged flaws in the Microsoft Exchange Server that came to light earlier this March to deploy a previously undocumented variant of a remote access trojan RAT on compromised systems. Attributing the intrusions to a threat actor...

0.5AI score
Exploits0
ThreatPost
ThreatPost
added 2021/01/06 9:20 p.m.41 views

It’s Not the Trump Sex Tape, It’s a RAT

As outgoing President Donald Trump continues to dominate headlines, cybercriminals have decided to horn in on the much-gossiped-about — and yet to materialize — Trump sex tape as a lure for malware delivery. A campaign has been uncovered that labels a malware downloader with the filename...

0.2AI score
Exploits0References8
Microsoft Secure
Microsoft Secure
added 2020/12/09 5:0 p.m.28 views

EDR in block mode stops IcedID cold

We are happy to announce the general availability of endpoint detection and response EDR in block mode in Microsoft Defender for Endpoint. EDR in block mode turns EDR detections into real-time blocking of malicious behaviors, malware, and artifacts. It uses Microsoft Defender for Endpoint’s...

Exploits0
Kitploit
Kitploit
added 2019/03/24 8:32 p.m.160 views

Androwarn - Yet Another Static Code Analyzer For Malicious Android Applications

Androwarn is a tool whose main aim is to detect and warn the user about potential malicious behaviours developped by an Android application. The detection is performed with the static analysis of the application's Dalvik bytecode, represented as Smali, with the androguard library. This analysis...

7.2AI score
Exploits0References2
ThreatPost
ThreatPost
added 2018/11/01 4:37 p.m.542 views

Utilities, Energy Sector Attacked Mainly Via IT, Not ICS

While industrial control systems ICS are the most talked-about when it comes to cyberattacks against energy and utilities firms, most attacks actually take aim at the enterprise IT networks used by these organizations, rather than critical infrastructure itself. The Vectra 2018 Spotlight Report o...

2.1AI score
Exploits0References4
ThreatPost
ThreatPost
added 2018/07/18 7:45 p.m.14 views

ThreatList: Popular Apps Get Enterprise Blacklisted

Mobile apps on BYOD handhelds tend to keep enterprise security pros worried. Between apps that are malicious, others that leak data and ones with pushy permissions – it’s hard to determine what’s safe and what might violate company rules. On Wednesday, Appthority released its annual list of the...

7AI score
Exploits0References3
Rows per page
Query Builder