Lucene search
K

25 matches found

Kitploit
Kitploit
added 2019/10/10 12:0 p.m.179 views

MalConfScan - Volatility Plugin For Extracts Configuration Data Of Known Malware

MalConfScan is a Volatility plugin extracts configuration data of known malware. Volatility is an open-source memory forensics framework for incident response and malware analysis. This tool searches for malware in memory images and dumps configuration data. In addition, this tool has a function ...

7.4AI score
Exploits0References4
The Hacker News
The Hacker News
added 2019/07/25 1:45 p.m.1 views

Popular Malware Families Using 'Process Doppelgänging' to Evade Detection

The fileless code injection technique called Process Doppelgänging is actively being used by not just one or two but a large number of malware families in the wild, a new report shared with The Hacker News revealed. Discovered in late 2017, Process Doppelgänging is a fileless variation of Process...

7.3AI score
Exploits0
ThreatPost
ThreatPost
added 2019/03/27 3:26 p.m.97 views

Cybercriminals Have a Heyday with WinRAR Bug in Fresh Campaigns

A recently discovered vulnerability in the WinRAR file archival utility has been exploited in a slew of new campaigns, including one with a never-before-seen payload. The flurry of activity shows no sign of waning as cybercriminals continue to find success exploiting the bug. The campaigns take...

6.8CVSS0.96274EPSS
Exploits13References9
ThreatPost
ThreatPost
added 2017/07/05 2:56 p.m.15 views

Threat Actors Target Chinese Language News Sites

A California-based news website covering China, called China Digital Times, was targeted in a spying campaign that involved phishing lures and the use of the NetWire remote access Trojan. The attacks began in February 2017 and were part of a wider campaign of phishing, reconnaissance and malware...

0.1AI score
Exploits0References1
ThreatPost
ThreatPost
added 2016/11/29 3:40 p.m.17 views

NetWire RAT Back, Stealing Payment Card Data

The remote access Trojan NetWire is back and this time making the rounds pilfering payment card data. The move is a shift for attackers behind notorious NetWire, that was once thought to be the first multi-platform RAT. Over the last couple of years payment card breaches have been mostly synonymo...

0.2AI score
Exploits0References5
Rows per page
Query Builder