Lucene search
K

7 matches found

hivepro
hivepro
added 2024/04/18 5:13 a.m.20 views

TA558’s SteganoAmor Campaign Targets Organizations Worldwide

...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2024/04/16 1:39 p.m.76 views

TA558 Hackers Weaponize Images for Wide-Scale Malware Attacks

The threat actor tracked as TA558 has been observed leveraging steganography as an obfuscation technique to deliver a wide range of malware such as Agent Tesla, FormBook, Remcos RAT, LokiBot, GuLoader, Snake Keylogger, and XWorm, among others. "The group made extensive use of steganography by...

9.3CVSS8.2AI score0.99945EPSS
Exploits33
The Hacker News
The Hacker News
added 2024/04/02 4:54 a.m.31 views

Massive Phishing Campaign Strikes Latin America: Venom RAT Targeting Multiple Sectors

The threat actor known as TA558 has been attributed to a new massive phishing campaign that targets a wide range of sectors in Latin America with the goal of deploying Venom RAT. The attacks primarily singled out hotel, travel, trading, financial, manufacturing, industrial, and government vertica...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2024/02/05 3:45 a.m.82 views

New Mispadu Banking Trojan Exploiting Windows SmartScreen Flaw

The threat actors behind the Mispadu banking Trojan have become the latest to exploit a now-patched Windows SmartScreen security bypass flaw to compromise users in Mexico. The attacks entail a new variant of the malware that was first observed in 2019, Palo Alto Networks Unit 42 said in a report...

8.8CVSS9.4AI score0.88196EPSS
Exploits2
The Hacker News
The Hacker News
added 2023/05/12 9:0 p.m.85 views

XWorm Malware Exploits Follina Vulnerability in New Wave of Attacks

Cybersecurity researchers have discovered an ongoing phishing campaign that makes use of a unique attack chain to deliver the XWorm malware on targeted systems. Securonix, which is tracking the activity cluster under the name MEME4CHAN, said some of the attacks have primarily targeted manufacturi...

9.3CVSS7.4AI score0.99374EPSS
Exploits62
ThreatPost
ThreatPost
added 2022/08/22 1:59 p.m.88 views

Fake Reservation Links Prey on Weary Travelers

A longtime threat group identified as TA558 has ramped up efforts to target the travel and hospitality industries. After a lull in activity, believed tied to COVID-related travel restrictions, the threat group has ramped up campaigns to exploit an uptick in travel and related airline and hotel...

9.3CVSS8.7AI score0.99945EPSS
Exploits33References8
The Hacker News
The Hacker News
added 2022/08/19 1:35 p.m.319 views

Cybercrime Group TA558 Targeting Hospitality, Hotel, and Travel Organizations

A financially motivated cybercrime group has been linked to an ongoing wave of attacks aimed at hospitality, hotel, and travel organizations in Latin America with the goal of installing malware on compromised systems. Enterprise security firm Proofpoint, which is tracking the group under the name...

9.3CVSS0.5AI score0.99945EPSS
Exploits47
Rows per page
Query Builder