23 matches found
New ForumTroll Phishing Attacks Target Russian Scholars Using Fake eLibrary Emails
The threat actor linked to Operation ForumTroll has been attributed to a fresh set of phishing attacks targeting individuals within Russia, according to Kaspersky. The Russian cybersecurity vendor said it detected the new activity in October 2025. The origins of the threat actor are presently...
Operation ForumTroll continues: Russian political scientists targeted using plagiarism reports
Introduction In March 2025, we discovered Operation ForumTroll, a series of sophisticated cyberattacks exploiting the CVE-2025-2783 vulnerability in Google Chrome. We previously detailed the malicious implants used in the operation: the LeetAgent backdoor and the complex spyware Dante, developed ...
Kimsuky APT Deploying Linux Backdoor Gomir in South Korean Cyber Attacks
The Kimsuky aka Springtail advanced persistent threat APT group, which is linked to North Korea's Reconnaissance General Bureau RGB, has been observed deploying a Linux version of its GoBear backdoor as part of a campaign targeting South Korean organizations. The backdoor, codenamed Gomir, is...
N. Korea-linked Kimsuky Shifts to Compiled HTML Help Files in Ongoing Cyberattacks
The North Korea-linked threat actor known as Kimsuky aka Black Banshee, Emerald Sleet, or Springtail has been observed shifting its tactics, leveraging Compiled HTML Help CHM files as vectors to deliver malware for harvesting sensitive data. Kimsuky, active since at least 2012, is known to target...
Kimsuky's New Golang Stealer 'Troll' and 'GoBear' Backdoor Target South Korea
The North Korea-linked nation-state actor known as Kimsuky is suspected of using a previously undocumented Golang-based information stealer called Troll Stealer. The malware steals "SSH, FileZilla, C drive files/directories, browsers, system information, and screen captures" from infected systems...
The Strange Afterlife of Wagner’s Yevgeny Prigozhin
Posts praising the Wagner Group boss following his death in a mysterious plane crash last month indicate he was still in control of his "troll farm," researchers claim...
Russia’s Notorious Troll Farm Disbands
Plus: A French bill would allow spying via phone cameras, ATM skimmers target welfare families, and Japan’s largest cargo port gets hit with ransomware...
Chinese Cops Ran Troll Farm and Secret NY Police Station, US Says
Three criminal cases detail China's alleged attempts to extend its security forces' influence online—and around the globe...
Inside the World’s Biggest Hacker Rickroll
As a graduation prank, four high school students hijacked 500 screens across six school buildings to troll their classmates and teachers...
A Ransomware Gang Bought Facebook Ads to Troll Its Victim
Covid-19 research hacking, the Pentagon's Photoshop antics, and more of the week's top security news...
Jigsaw Bought a Russian Twitter Troll Campaign as an Experiment
In a controversial move, the Alphabet-owned tech firm played both sides of an online argument in Russia with the aim of testing disinformation-for-hire services...
anti-troll.ru XSS vulnerability
Open Bug Bounty ID: OBB-669366 Description| Value ---|--- Affected Website:| anti-troll.ru Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Perspectives on Russian hacking
Russia is an endlessly fascinating subject both in and around infosec. Recent years have shifted attention away from pure malware capabilities, to psyops, social engineering, and an endless slew of mind games designed to destabilize and keep nations ever-so-slightly off balance. Security firms in...
Troll Face Quest Video Memes - Dangerous filesystem permissions, Exported ContentProvider, Insecure KeyStore vulnerabilities
HackApp vulnerability scanner discovered that application Troll Face Quest Video Memes published at the 'play' market has multiple vulnerabilities...
Troll Face Girl - Dynamic Code Loading, External URLs, Native code usage vulnerabilities
HackApp vulnerability scanner discovered that application Troll Face Girl published at the 'play' market has multiple vulnerabilities...
Patent Troll — 66 Big Companies Sued For Using HTTPS Encryption
Are you Using HTTPS on your Website to securely encrypt traffic? Well, we'll see you in the court. At least, that's what CryptoPeak is saying to all big brands that utilize HTTPS on their web servers. BIG Brands Sued for Using HTTPS: 'Patent Troll' Texas-based company CryptoPeak Solutions LLC has...
CVE-2014-6982
The Arabic Troll Football aka com.hamoosh.ArabicTrollFootball application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Arabic Troll Football aka com.hamoosh.ArabicTrollFootball application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6982
The CVE-2014-6982 entry concerns the Android app “Arabic Troll Football” (com.hamoosh.ArabicTrollFootball) version 1.0.1. Affected component: SSL/TLS certificate validation in the app’s network stack. Root cause: the application does not verify X.509 certificates from SSL servers, enabling man-in...
CVE-2014-6982
The Arabic Troll Football aka com.hamoosh.ArabicTrollFootball application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...