Russian Hackers Using Fake Brand Sites to Spread DanaBot and StealC Malware

/in

Cybersecurity researchers have shed light on a sophisticated information stealer campaign that impersonates legitimate brands to distribute malware like DanaBot and StealC.
The activity cluster, orchestrated by Russian-speaking cybercriminals and collectively codenamed Tusk, is said to encompass several sub-campaigns, leveraging the reputation of the platforms to trick users into downloading the

The Hacker News – ​Read More

Cloud Misconfigurations Expose 110,000 Domains to Extortion in Widespread Campaign

/in

Security researchers at Palo Alto Networks discover a threat actor extorting organizations after compromising their cloud environments using inadvertently exposed environment variables.

The post Cloud Misconfigurations Expose 110,000 Domains to Extortion in Widespread Campaign appeared first on SecurityWeek.

SecurityWeek – ​Read More

In Other News: 400 CNAs, Crash Reports, Schlatter Cyberattack

/in

Noteworthy stories that might have slipped under the radar: there are 400 CVE Numbering Authorities, crash reports can be a valuable source of information, and Schlatter was hit by a cyberattack.

The post In Other News: 400 CNAs, Crash Reports, Schlatter Cyberattack appeared first on SecurityWeek.

SecurityWeek – ​Read More

Russian Citizen Sentenced in US for Selling Stolen Financial Data on Criminal Marketplace

/in

A Russian citizen, known by various online names like “TeRorPP,” has been sentenced to 40 months in a U.S. prison for selling financial data and login credentials on the criminal marketplace Slilpp.

Cyware News – Latest Cyber News – ​Read More

Why Are Organizations Losing the Ransomware Battle?

/in

Institutionalizing and sustaining fundamental cybersecurity practices requires a commitment to ongoing vigilance, active management, and a comprehensive understanding of evolving threats.

darkreading – ​Read More

Consolidation vs. Optimization: Which Is More Cost-Effective for Improved Security?

/in

Security leaders are facing big decisions about how they use their monetary and people resources to better secure their environments.

The post Consolidation vs. Optimization: Which Is More Cost-Effective for Improved Security? appeared first on SecurityWeek.

SecurityWeek – ​Read More

Multi-Stage ValleyRAT Targets Chinese Users with Advanced Tactics

/in

Chinese-speaking users are the target of an ongoing campaign that distributes malware known as ValleyRAT.
“ValleyRAT is a multi-stage malware that utilizes diverse techniques to monitor and control its victims and deploy arbitrary plugins to cause further damage,” Fortinet FortiGuard Labs researchers Eduardo Altares and Joie Salvio said.
“Another noteworthy characteristic of this malware is its

The Hacker News – ​Read More

It’s Time to Stop Thinking of Threat Groups as Supervillains, Experts Say

/in

CISA Director Jen Easterly highlighted the importance of not glamorizing threat actors, urging defenders to focus on detecting and responding to malicious tactics rather than being fixated on the threat groups themselves.

Cyware News – Latest Cyber News – ​Read More

New Banshee Stealer macOS Malware Priced at $3,000 Per Month

/in

Russian cybercriminals are advertising a new macOS malware, Banshee Stealer, capable of stealing passwords, browser data, and crypto wallets. 

The post New Banshee Stealer macOS Malware Priced at $3,000 Per Month appeared first on SecurityWeek.

SecurityWeek – ​Read More

Ransomware Attackers Introduce New EDR Killer to Disable Protection on Compromised Hosts

/in

A cybercrime group linked to RansomHub ransomware has been seen using a new EDR-killing tool, named EDRKillShifter, to disable endpoint detection and response software on compromised hosts.

Cyware News – Latest Cyber News – ​Read More