Lucene search
K

8 matches found

Securelist
Securelist
added 2025/10/27 3:0 a.m.22 views

Mem3nt0 mori – The Hacking Team is back!

In March 2025, Kaspersky detected a wave of infections that occurred when users clicked on personalized phishing links sent via email. No further action was required to initiate the infection; simply visiting the malicious website using Google Chrome or another Chromium-based web browser was...

10CVSS9.1AI score0.08404EPSS
Exploits6
The Hacker News
The Hacker News
added 2025/10/18 11:41 a.m.8 views

New .NET CAPI Backdoor Targets Russian Auto and E-Commerce Firms via Phishing ZIPs

Cybersecurity researchers have shed light on a new campaign that has likely targeted the Russian automobile and e-commerce sectors with a previously undocumented .NET malware dubbed CAPI Backdoor. According to Seqrite Labs, the attack chain involves distributing phishing emails containing a ZIP...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/08/12 4:28 p.m.8 views

WinRAR vulnerability exploited by two different groups

On July 30, 2025, WinRAR released a new version 7.13 Final to patch a vulnerability which was used in two separate malware campaigns. WinRAR is a popular file archiving and data compression tool that allows users to compress files into smaller archives, like RAR and ZIP, and can also unpack vario...

8.8CVSS8.1AI score0.85778EPSS
Exploits35
The Hacker News
The Hacker News
added 2024/09/21 2:39 p.m.42 views

Hacktivist Group Twelve Targets Russian Entities with Destructive Cyber Attacks

A hacktivist group known as Twelve has been observed using an arsenal of publicly available tools to conduct destructive cyber attacks against Russian targets. "Rather than demand a ransom for decrypting data, Twelve prefers to encrypt victims' data and then destroy their infrastructure with a...

10CVSS10AI score0.99999EPSS
Exploits57
The Hacker News
The Hacker News
added 2023/06/29 4:48 a.m.4 views

Newly Uncovered ThirdEye Windows-Based Malware Steals Sensitive Data

A previously undocumented Windows-based information stealer called ThirdEye has been discovered in the wild with capabilities to harvest sensitive data from infected hosts. Fortinet FortiGuard Labs, which made the discovery, said it found the malware in an executable that masqueraded as a PDF fil...

6.5AI score
Exploits0
Malwarebytes
Malwarebytes
added 2020/04/28 5:8 p.m.33 views

Threat actors release Troldesh decryption keys

Update: Kaspersky has updated their ShadeDecryptor tool to include decryption for the keys released by "shade team". You can download the tool and find instructions here. A GitHub user claiming to represent the authors of the Troldesh Ransomware calling themselves the “Shade team” published this...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2017/04/12 9:41 p.m.342 views

Not Just Criminals, But Governments Were Also Using MS Word 0-Day Exploit

Recently we reported about a critical code execution vulnerability in Microsoft Word that was being exploited in the wild by cyber criminal groups to distribute malware like Dridex banking trojans and Latentbot. Now, it turns out that the same previously undisclosed vulnerability in Word...

9.3CVSS8AI score0.99933EPSS
Exploits29
The Hacker News
The Hacker News
added 2012/12/17 10:37 a.m.9 views

Korean Cyber espionage attack Targets Russia

Ask an expert on cyber espionage and he for sure he will speak of China, the most active and advanced country in this sector, this time a clamorous campaign apparently originated from Korea has been discovered. Security company FireEye collected evidences of a cyber espionage campaign, named...

6.6AI score
Exploits0
Rows per page
Query Builder